| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
From: rms at computerbytesman.com (Richard M. Smith) Subject: Question about the new Xupiter toolbar Nope, but we all already knew the answer. ;-) IE also doesn't remember a "No" decision. IE will just keep downloading the same ActiveX control no matter how many times one says "No". Turning off ActiveX downloading is no solution either. IE then just then popups with the silly warning saying Web pages can't rendered properly. Almost everything in the IE download scheme is designed to get people to accept ActiveX controls for better or worse. It's all very crappy security policy but wonderful for the sleazy marketers. Richard -----Original Message----- From: full-disclosure-admin@...ts.netsys.com [mailto:full-disclosure-admin@...ts.netsys.com] On Behalf Of Georgi Guninski Sent: Friday, January 31, 2003 11:24 AM To: Thor Larholm Cc: full-disclosure@...ts.netsys.com Subject: Re: [Full-Disclosure] Question about the new Xupiter toolbar Thor Larholm wrote: > There is no such thing as a "standard ActiveX drive-by download mechanism", > that term is utterly FUD. > Has m$ fixed the "feature" of installing old buggy activex signed by them? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Powered by blists - more mailing lists