On Monday, Oct 27, 2003, at 15:35 Europe/Rome, Robert Koberg wrote:
nah, dude, look: doco has a very precise editing access point. You can
*ONLY* modify xml content. So, changes to .htaccess, CGI scripts,
servlet upload, sql injection, cross-site-scripting, and you next
favorite attack will NOT wo
> -Original Message-
> From: Stefano Mazzocchi [mailto:[EMAIL PROTECTED]
> Sent: Monday, October 27, 2003 6:06 AM
> To: James Developers List
> Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; lenya-
> [EMAIL PROTECTED]
>
>
> On Sunday, Oct 26, 2003, at 23:33 Europe/Rome, Noel J. Bergman wrote
On Sunday, Oct 26, 2003, at 23:33 Europe/Rome, Noel J. Bergman wrote:
He's not questioning whether it's encrypted. His point is, doco sends
an email to an address, and you respond. It gives very little
control,
even if there is a compromise.
AIUI, the proposed solution would allow "anyone" to e
On Friday 24 October 2003 21:47, Noel J. Bergman wrote:
> Søren,
>
> We might do some further tweaking, but I think you've got the right idea.
> The thought I have is that (down the road) some code might want to accept
> messages based upon other criteria, so we might want to enlarge upon our
> op
