Re: SECURITY ALERT! [Re: How do you execute shell scripts in Mosaic]

vinay@eit.COM (Vinay Kumar)
Errors-To: listmaster@www0.cern.ch
Date: Wed, 8 Jun 1994 19:33:15 +0200
Errors-To: listmaster@www0.cern.ch
Message-id: <9406081731.AA02550@eit.COM>
Errors-To: listmaster@www0.cern.ch
Reply-To: vinay@eit.COM
Originator: www-talk@info.cern.ch
Sender: www-talk@www0.cern.ch
Precedence: bulk
From: vinay@eit.COM (Vinay Kumar)
To: Multiple recipients of list <www-talk@www0.cern.ch>
Subject: Re: SECURITY ALERT! [Re: How do you execute shell scripts in Mosaic]
X-Listprocessor-Version: 6.0c -- ListProcessor by Anastasios Kotsikonas
Marc said:
> And naturally people who are security-conscious will want to hurry and
> download the binaries for which source is not made available and check
> them out. :-)

The same security-consious people are using Mosaic binaries left and right, 
so what's your point ?

Besides, I did not make claims about the level of trustedness anyway, so....

Marc said:
>  Do you have any example programs for it (non-trivial
> ones, I mean)?

The sources will be available as soon as i clean up the code.
what do you mean by example programs ? If you mean a URL that you can try
this against, you may try:
	http://www.eit.com/cgi-bin/mediaform

However you will need some of the MBONE tools for this. MBONE tools
available at:
	http://www.eit.com/techinfo/mbone/mc-soft.html
Marc said:
> 
> The C shell hardly seems a suitable language for evaluation of
> untrusted code.  What's wrong with Safe-Tcl?
> 
> - Marc
> --
Please tell us what is wrong with Safe-......!

--
  Vinay Kumar
vinay@eit.com