• To: xml-dev@l...
• Subject: RE: Wrapping Scripted Media in RSS: Secure?
• From: "Bullard, Claude L (Len)" <len.bullard@i...>
• Date: Thu, 30 Jun 2005 16:08:40 -0500

Thanks Jeff and Bill.

Apparently, any media type developed with internal scripting 
is a candidate for exploitation.  That's painful.  Almost 
every media type that is fun to do has that as a feature.

I was asking originally because a fellow BoD member for the 
W3DC (X3D) asked about putting 3D worlds inside RSS.  It is 
a great idea, but then we have to cope with the kiddies and 
the criminals.

This is interesting reading.

http://www.wired.com/news/infostructure/0,1377,68004,00.html?tw=rss.TOP

It corresponds to the darker thoughts I've had since 1989.  The only 
really safe approach is to recognize the Internet is inherently insecure 
and start over with the humbling knowledge that we have to plan for 
the dark and dumb sides of human nature when building world wide 
systems.  So yeah, let's put a semantic engine on top of the current 
system and see what they do with that given the unreasonable way 
people accept whatever comes out of these boxes.

Off tomorrow.  Happy 4th to those to whom that is a happy day... as 
for the Brits, TDBYRCBs! :-)

len

• Prev by Date: Re: Oracle and XML
• Next by Date: RE: Oracle and XML
• Previous by thread: Re: Wrapping Scripted Media in RSS: Secure?
• Index(es):
  • Date
  • Thread