[EMAIL PROTECTED] (Chris Hill) wrote in [EMAIL PROTECTED]">news:[EMAIL PROTECTED], on 27 Nov 2001: > >>Java and Netscape's plugins don't get access to the rest of the >>system, in general. I remember Heat.net's plugin installer was a >>Java applet, before it could do anything I was prompted a huge >>security alert saying "Install software on machine - HIGH RISK". I >>don't get that secure feeling with IE. IE is just too leaky for my >>tastes > > Netscape plugins DO get access to the entire system once installed. >
No they don't. Perhaps we are missing each other along some lines. A plugin is run in a little virtual sandbox area type of thing. It can't spontaneously decide to rename a file in my \winnt\system32 folder. It does not have root, or administrator, or any high ranking access level. It can only muck with certain things. At worst, a malicious Netscape plugin could intentionally corrupt my netscape preferences or similar. If it were to try to format the hard drive, it would get no where. Active X allows much more system access than this, and as such, much more security problems -- ICQ: N/A (temporarily) AIM: FlyersR1 9 email: [EMAIL PROTECTED] _ = m
