begin quoting Neil Schneider as of Sat, Sep 23, 2006 at 12:26:41PM -0700: > > Jason Kraus wrote: > > You might be right about the security. But for my purposes I would > > not be syncing outside of my network. The SVN would only be > > accessibly from my lan and when my laptop signs onto my network, it > > synchronizes. Sides, by your argument just about any service is a > > security threat and should not be done, unless ofc this setup > > presents a higher level risk. > > I was more specific than you implied. Regular http doesn't send code > to my browser for me to execute locally. FTP executes a very specific > set of commands on my machine, with I can review and decide what the > security risks are. However java apps, javascript, and activeX
Do you mean "applets"? I prefer Java apps (not applets), and a strict security setting. > controls all run remote code local on my machine, if I allow it. There > are various exploits, some trivail and some that will take control of > your computer from you, have been written for some of them. Javascript can be (well, has been, dunno if it's fixed) used to defeat the security settings on the JVM sandbox -- if you enable Java, you should probably disable Javascript. > All connections from one computer to another carry some security > risks. Not all risks are the same and not all are acceptable to a > security admin. "Live data" is inherently difficult to protect against, and oh-so appealing to programmers. But then, it's much the same thing with self-modifying code -- very powerful, but it'll give the security minded the heebee jeebies. -- _ |\_ \| -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
