-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Bill,
This is a silly argument, so sorry to all for pursuing it. Bill, I
guess you're not familiar with any of the following Javascript
security issues:
JavaScript Redirect Vulnerability in Internet Explorer
http://support.microsoft.com/support/kb/articles/Q244/2/33.ASP?LN=EN-U
S&SD=gn&FR=0&qry=javascript&rnk=13&src=DHCS_MSPSS_gn_SRCH&SPR=IE
Hotmail security hole - injecting JavaScript in IE using @import url
http://www.securiteam.com/securitynews/Hotmail_security_hole_-_injecti
ng_JavaScript_in_IE_using__import_url_http___host_hostile_css_.html
So, just to clear any misunderstandings up that you OBVIOUSLY have:
a) I don't think the Love Bug was a browser based script
b) Javascript can be a security issue as evidenced above,
and
c) you're not dealing with morons here on CF-TALK. You are dealing
with knowledgeable people who back up what they say.
Respectfully,
Aaron Johnson, MCSE, MCP+I
Allaire Certified ColdFusion Developer
MINDSEYE, Inc.
<phn>617.350.0339
<fax>617.350.8884
<icq>66172567
[EMAIL PROTECTED]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/cf-talk@houseoffusion.com/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
