David Roberts wrote:
>
>Haven't played with M$ mail for a long time (ignorance is bliss, at
>times), so here comes a stupid question... Why don't the Admins turn
>off this "feature", or hasn't M$ given them the ability to do so? It
>is an obvious security breach - make the user click on something,
>*anything*, before running ("previewing") any attachments!
It's a client configuration option; the Sys Admins have no control over the
setting.
Even if Auto-Preview is disabled, the same effect will occur when the
message is opened normally.
I believe scripts embedded in the message text (as opposed to an attachment)
should ALWAYS require explicit confirmation before being allowed to perform
any operation which has effects on any part of the system other than the
display. There should not be any user option to disable this confirmation.
Jerry
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
