Gordon Burditt <[EMAIL PROTECTED]> wrote or quoted:
> Before worrying about the possible bugs in the implementations,
> worry about security issues present in the *DESIGN*. Email ought
> to be usable to carry out a conversation *SAFELY* with some person out
> to get you. Thus features like this are dangerous (in the *design*,
> not because they *might* hide a buffer-overflow exploit):
>
> - Hyperlinks to anything *outside* the email in which the link
> resides ("web bugs").
Acceptable risk, IMO.
> - Any ability to automatically generate hits on sender-specified
> servers when the email is read.
I hadn't though of that one. As well as use in DDOS attacks, that
can help let spammers know if they have reached a human :-|
Even a link in a plain text email can be used (though with reduced
effectiveness) in such a context :-(
--
__________
|im |yler http://timtyler.org/ [EMAIL PROTECTED] Remove lock to reply.
--
http://mail.python.org/mailman/listinfo/python-list
