load command security holes?

Mark Brownell gizmotron at earthlink.net
Tue Jul 27 16:32:20 EDT 2004


On Tuesday, July 27, 2004, at 01:10 PM, Brian Yennie wrote:

> Mark,
>
> Using load URL shouldn't ever be able to execute any code or open a 
> stack. I would be different if you were using a "go stack" or "open 
> stack" with a URL, but load URL should only download, and won't treat 
> such as a stack unless you explicitly address it that way in your own 
> code.
>
> HTH,
> Brian

Great, glad to hear it. I've just discovered a mob of interested 
customers charging at me to get my MTML browser. One of my sales 
persons has an entire company that wants to use it. Two people want the 
government to use it. It would take a day to make it a vertical browser 
with a company wide customized file format that would not surf outside 
the company network. So, sports fans, there's good business in the 
FUD/browser security market.

Build a browser, include a unique file format, add encryption, and 
market it for vertical markets. Thanks Rev!

Mark



More information about the use-livecode mailing list