-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The Wednesday 2007-08-08 at 10:53 -0400, Michael Letourneau wrote:
> > No, screen savers are actually executable programs, not data. You normally
> > do not call them directly, but "something" does.
>
> My bad. But the idea is still pertinent and though they are executable,
> how many other desktop artifacts are not? Skins, backgrounds, and window
> decorations come to mind. Yes its definitely not a straightforward or
> likely method at all to be manipulated.
It would be a problem if the program using those files has a hole, like a
memory overflow. And those problems are detected now and then. The Gimp
had one plugged this week, for instance. Not a virus, though, and not the
user's fault.
> But I think the other person's point was that if "x" is not executable,
> then it cannot do any harm, which I think is a naive assumption,
It "shouldn't" cause any problem.
> plenty of
> programs read in data, and if those programs are not properly written that
> data can be used to trigger events. Not the least of which is any program
> that has scripting tied into it, whether that be macros or otherwise.
Yes, that might happen.
- --
Cheers,
Carlos E. R.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Made with pgp4pine 1.76
iD8DBQFGulLotTMYHG2NR9URAgq8AJ9zFYWAXDWgvuGfaC2dac2Fveto7ACghKJ1
ORyRRaFcjAP4VUQV0AnVNHY=
=Xdji
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
