Scot,
While what you say is true - meaning an all-text restriction on your email
browser will prevent
"dangerous goods" to be downloaded - it also takes away functionality. We
have to find a way to
be able to use html based email but restrict it from - say running scripts,
executing anything,
writing cookies, issuing queries, etc... Until that happens, you're right -
html based email
is like a runaway train. We have to invent the "brakes" now.
Lillian Komlossy
Site Manager
http://www.dmnews.com
http://www.imarketingnews.com
(212) 925-7300 ext. 232
-----Original Message-----
From: Scot Mc Pherson [mailto:smcpherson(_at_)clearaccess(_dot_)net]
Sent: Thursday, May 11, 2000 10:07 AM
To: Valdis(_dot_)Kletnieks(_at_)vt(_dot_)edu; 'Castro, Edison M. (PCA)'
Cc: 'Steven M. Bellovin'; Stef(_at_)NMA(_dot_)COM; 'Brant Knudson';
ietf(_at_)ietf(_dot_)org
Subject: RE: VIRUS WARNING
I believe the one of the most important holes is html based mail, because
the e-mail is processed as a webpage which can be used to download
undesirable content. If you configure your e-mail browser to display all
messages as text you will close this hole...You will notice my e-mails are
nearly 100% text
Scot