[39901] in Cypherpunks
Re: Another Netscape Bug (and possible security hole)
daemon@ATHENA.MIT.EDU (Adam Shostack)
Fri Sep 22 15:33:35 1995
From: Adam Shostack <adam@homeport.org>
To: perry@piermont.com
Date: Fri, 22 Sep 1995 15:27:23 -0400 (EDT)
Cc: cypherpunks@toad.com
In-Reply-To: <199509221243.IAA03781@frankenstein.piermont.com> from "Perry E. Metzger" at Sep 22, 95 08:43:25 am
Perry E. Metzger wrote:
| I don't believe the Sun Java stuff would suffer from it, although I
| fear Java a great deal.
I keep hearing this thought. Isn't Win95 with its
'executables in email' much more dangerous than Java, which at least
tries to address security?
There is the argument that the claims will inspire false
confidence in Java's security mechanisms, and thus people will be
bitten, but I don't buy it. People don't look to security as a chack
item when buying software. And when they do, they're usually not
capable of distinguishing between the pap that passes for security
through marketing from security by design.
Adam
--
"It is seldom that liberty of any kind is lost all at once."
-Hume
