[2439] in WWW Security List Archive
Re: Security aspects of Timbuktu Look@Me?
daemon@ATHENA.MIT.EDU (Marianne Mueller)
Wed Jul 17 20:44:55 1996
Date: Wed, 17 Jul 1996 15:11:20 -0700
From: mrm@doppio.Eng.Sun.COM (Marianne Mueller)
To: riddle@is.rice.edu
CC: www-security@ns2.rutgers.edu
In-reply-to: <199607151735.MAA18559@is.rice.edu> (message from Prentiss Riddle on Mon, 15 Jul 1996 12:35:50 -0500 (CDT))
Errors-To: owner-www-security@ns2.rutgers.edu
Well this got my attention :-)
Turns out that if some group of people all voluntarily install the
Look@Me program on their system, then, they can use it as a kind of
consensual chat area. Also, it's not just an applet, it's an applet
with a Netscape plug-in.
If people want to install software so that they can do internet
teleconferencing, this seems perfectly reasonable to me.
The main problem is that the Look@Me program keeps causing browsers to
core dump. I don't know if the Look@Me program is at fault, or the
browsers.
Marianne
JavaSoft security
