On 12 May 2008 01:55:00 -0700, in bit.listserv.ibm-main
(Message-ID:<[EMAIL PROTECTED]>)
[EMAIL PROTECTED] (Martin Packer) wrote:
I hope you're not suggesting javascript is evil and to be
avoided at all costs. And I do hope you'll trust IBMLink
in that regard.
Remember, you're not just trusting that IBM doesn't
want to do something malicious. You're also trusting that
they haven't made a mistake in their code that does
something accidentally nasty.
More importantly, you're also trusting that their
site hasn't been hacked. Since even the sites of security
gurus have been hacked, that's an awful lot of trust.
Java is safe, at least theoretically, because it runs
in its own virtual machine. Javascript, by design, can do
damn near anything to your machine.
What part of "letting a site have nearly full control
of your own machine" do you think is not evil?
--
I cannot receive mail at the address this was sent from.
To reply directly, send to ar23hur "at" intergate "dot" com
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO
Search the archives at http://bama.ua.edu/archives/ibm-main.html
