• To: Bill Kearney <wkearney@s...>
• Subject: Re: Wrapping Scripted Media in RSS: Secure?
• From: Robert Koberg <rob@k...>
• Date: Thu, 22 Sep 2005 15:10:52 -0400
• Cc: xml-dev@l...
• In-reply-to: <4332EE8D.9010405@s...>
• References: <15725CF6AFE2F34DB8A5B4770B7334EE0720746B@h...> <4332E386.8040009@k...> <4332EE8D.9010405@s...>
• User-agent: Mozilla Thunderbird 1.0 (Macintosh/20041206)

Bill Kearney wrote:
> Robert Koberg wrote:
> 
>> The problem is not with 'inherent insecurities of script languages 
>> inside content', it is with whoever maintains the server system. In 
>> other words, I think you are looking at the wrong culprit.
> 
> 
> 
> Indeed.  But new technologies, or new uses of existing tech, often 
> present unforseeable risks.  We've always stressed that RSS isn't the 
> place for 'active content' that would require scripting. Precisely 
> because of past experience with abusing embedded content (ask me about 
> beaming newton notes sometime!)
> 
> Not because it's not a cool idea but because the extant tools don't do a 
> very good job of warding off the inevitable foolishness it'd bring.  It 
> was more a stop-gap against the advertising nitwits wanting to graft 
> pop-up ads than anything else.   No sense in having the emerging concept 
> wrecked by allowing that rabble to bring along the same mess they've 
> made of browsers.

Are we talking about client or server side scripting? I was thinking 
about server-side...

best,
-Rob

• References:
  • RE: Wrapping Scripted Media in RSS: Secure?
    • From: "Bullard, Claude L (Len)" <len.bullard@i...>
  • Re: Wrapping Scripted Media in RSS: Secure?
    • From: Robert Koberg <rob@k...>
  • Re: Wrapping Scripted Media in RSS: Secure?
    • From: Bill Kearney <wkearney@s...>

• Prev by Date: Re: Wrapping Scripted Media in RSS: Secure?
• Next by Date: RE: Wrapping Scripted Media in RSS: Secure?
• Previous by thread: Re: Wrapping Scripted Media in RSS: Secure?
• Next by thread: Re: Wrapping Scripted Media in RSS: Secure?
• Index(es):
  • Date
  • Thread