Mostly this seems to concern cross-site scripting attacks. What you can do is quit your web browser and restart it again just before accessing a trusted site (e.g. your accounting system).
And of course, be picky about which sites you will accept cookies from. JavaScript can be like a car. You use it all the time because it makes life better, but you still have to be careful. -- Rod http://www.sunsetsystems.com/ On Thursday 29 August 2002 09:39 am, Bill Harris wrote: > Rod Roark wrote: > > Keep in mind also that JavaScript security risks are more in > > the area of "annoyances" -- e.g. opening a bunch of popup > > windows -- JS will not allow a web site to write to your > > hard drive, for example. > > But there have been bigger problems around, such as > http://www.cert.org/advisories/CA-1997-20.html (old). > CERT offers the following advice: > http://www.cert.org/tech_tips/home_networks.html#IV-A-9 and > http://www.kb.cert.org/vuls/id/361600 and > http://www.cert.org/tech_tips/malicious_code_FAQ.html. From them, I > gather that they recommend a prudent person not to enable Javascript > (ECMAScript) unless they really need to. > > Bill ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------- (un)subscribe: http://lists.sourceforge.net/lists/listinfo/sql-ledger-users Archive: http://www.mail-archive.com/[email protected]/
