[2641] in WWW Security List Archive
Re: ActiveX security hole reported.
daemon@ATHENA.MIT.EDU (Mary Ellen Zurko)
Fri Aug 16 11:15:50 1996
To: Sean Robert Wilkins <srw134@email.psu.edu>
cc: Jeremey Barrett <jeremey@forequest.com>, www-security@ns2.rutgers.edu,
zurko@osf.org
In-reply-to: Your message of "Fri, 16 Aug 1996 05:03:57 EDT."
<1.5.4.32.19960816090357.00683694@email.psu.edu>
Date: Fri, 16 Aug 1996 09:02:46 -0400
From: Mary Ellen Zurko <zurko@osf.org>
Errors-To: owner-www-security@ns2.rutgers.edu
> Now i should start and say i am surely not saying there are no security
> problems here, BUT actually a person who is running around the web with
> software of this type should know at least the basic security around the
> dialogs. Now not that everyone knows everything, but a basic level should be
> known,
I think the latest flap on this list about trying to get off shows that
a model which states that information that somehow, somewhy "should be known"
by all members of some self-selected community doesn't fly when tested using
reality. People don't function like that; they don't make sure they have
an undefined body of knowledge that does not stand directly between them
and their immediate goals. As any tech writer.
Mez
