Day wrote:
> With the internet, the problem changes because of phenomena like JAVA,
> which is code from the server being run on your machine. If that code
> is infected, you have not 'downloaded' anything intentionally, but it
> happens in the background, which is even more obscure on a multitasking
> operating system.
Java in it self can't transmit a virus. Only a defect Java Virtual Machine
can.
> With dos email tools, or non-java enabled browsers like Arachne, the
> remote server has no ability to run software on your machine. All it
> can do is send you text or graphics which are handled by the routines
> already running in your system. They are not executables.
No, but there are two ways for files to get executed. The first one is if
you choose that Arachne should be able to do so (not a default setting,
nor can it be set in the GUI). The other way would be to download a
net-exe/com file (for instance I could put one on arachne.cz which has (or
even is) a virus. Once you click on such a link the virus (infected
program) will be downloaded and run on your computer.
> Likewise with html webpages. I can easily look at the raw html code to
> see if there's anything funny in it. Given the limited ability of
> Arachne, there is no need, cause it will not recognize anything but the
> standard html, and that data set has no commands to write to my drive
> without me knowing about it.
Ahem, CSS support has been added (although very basic), JS is in the
works.
More over, none of these can actually contain a transportable virus. As
long as you stay clear of ActiveX, JBScript and IEScript you're safe
(better make that almost in case something bad happens with a non-M$
product <g>).
//Bernie
http://bernie.arachne.cz/
To unsubscribe from SURVPC send a message to [EMAIL PROTECTED] with
unsubscribe SURVPC in the body of the message.
Also, trim this footer from any quoted replies.
More info can be found at;
http://www.softcon.com/archives/SURVPC.html
