ietf-822
[Top] [All Lists]

Re: Content-Transfer-Encoding and yEnc

2002-04-03 12:05:22


Keith Moore wrote:

I just hope they put a MIC on the contents, otherwise there's a fairly
good way to attack (say) compiled windows programs that get posted.

MIC?

There is definitely a big security risk here, in that any posted file can
be attacked by inserting a virus/trojan/whatever into one part. However,
that's not really any different than what can happen with any binary
posted anywhere on the Internet. For that matter, only a fool would
download binaries from USENET without doing all kinds of testing.

-- 
Eric A. Hall                                        http://www.ehsco.com/
Internet Core Protocols          http://www.oreilly.com/catalog/coreprot/