[mso] Re: Microsoft Word flaw may allow file theft
- From: "Neil Atwood" <natwood@xxxxxxxxxxxxxxxxxx>
- To: <mso@xxxxxxxxxxxxx>
- Date: Sat, 14 Sep 2002 08:36:17 +1000
Well said Dian.
This whole thing is a case of a little knowledge being a dangerous
thing.
People hear of a 'security hole' and immediately jump up and down,
incensed that MS (or whoever) could allow this!
They demand a patch, often get it, then they 'feel' totally secure again
- until the next security scandal is 'uncovered' ... Little realising
that EVERY o/s (including *inux) is full of holes just waiting to be
exploited.
But we are probably moving a tad OT here...
Regards
____________________________________
,,,,, Neil Atwood - natwood@xxxxxxxxxxxxxxxxxx=20
=D4=BF=D4=AC Sydney, Australia=20
Want a good relationship with God?
http://lifeworks.toongabbieanglican.org
=20
-----Original Message-----
From: mso-bounce@xxxxxxxxxxxxx [mailto:mso-bounce@xxxxxxxxxxxxx] On
Behalf Of Dian Chapman
Sent: Saturday, 14 September 2002 7:20 AM
To: mso@xxxxxxxxxxxxx
Subject: [mso] Re: Microsoft Word flaw may allow file theft
Well...as a developer, I can sympathize with the problem. First, it's
been widely known for years and no one had a problem with it.
Now...suddenly...folks are up in arms about something that's been known
and sitting there for years. But now it's a big deal.
So to satisfy those so paranoid to worry about it, they take the time to
fix the problem. (Man...I HOPE this doesn't screw up the program like
other whiny user fixes have done!<sigh>) But they no longer develop
those older versions. And I for one, who really hate to have to go back
that far to rehash an old program...if it was me!
If they fixed every hold in 97...they'd never get to work on
newer/better versions. Sorry...but I just don't see a problem with it.=20
Dian Chapman
Technical Consultant, Instructor,
Microsoft MVP & TechTrax Editor
Word AutoForm/VBA eBook: http://www.mousetrax.com/books.html
Tutorial web site: http://www.mousetrax.com/techpage.html
TechTrax Ezine: http://www.mousetrax.com/techtrax/
-----Original Message-----
From: mso-bounce@xxxxxxxxxxxxx [mailto:mso-bounce@xxxxxxxxxxxxx] On
Behalf Of Linda F. Johnson
Sent: Friday, September 13, 2002 2:59 PM
To: mso@xxxxxxxxxxxxx
Subject: [mso] Re: Microsoft Word flaw may allow file theft
Hey Dian....I'm not discussing whether Microsoft should or should not
fix this...I think the scenario of someone getting a file from a
stranger who asks them to fix it is pretty farfetched (except for people
like you and me who get them all the time and hopefully we know better
anyway)
What I'm ticked off about is this comment in that article:
"The company said it will definitely repair the problem only for owners
of the most recent versions of the software. That decision -- still left
largely up in the air by Microsoft engineers -- may leave millions of
users of Word 97 without a fix."
What this says to me is...if MS does decide to fix this, then THEY are
recognizing it as a security flaw that needs addressing, but they are
once again thumbing their noses at the people who own the earlier
versions of their software....this is what gripes me.
Linda
Publisher ~ ABC ~ All 'Bout Computers
Owner ~ Linda's Computer Stop http://personal-computer-tutor.com
FREE MS Office eBook Tutorial
http://personal-computer-tutor.com/library.htm
=20
-----Original Message-----
From: mso-bounce@xxxxxxxxxxxxx [mailto:mso-bounce@xxxxxxxxxxxxx] On
Behalf Of Dian Chapman
Sent: Friday, September 13, 2002 3:35 PM
To: mso@xxxxxxxxxxxxx
Subject: [mso] Re: Microsoft Word flaw may allow file theft
Actually, it's a matter of trust. I could easily send you a document and
trash your computer and you'd never know the difference. Later you'd
suddenly realize you were missing tons of important files and you would
never know it was me that trashed your system.=20
But if they disabled every "feature" in Word that allowed collaboration,
why even bother using computers!
This is not so much as a security hole, as everyone is SUDDENLY talking
about...even though it's been there for YEARS...as it is a matter of
trusting the folks with whom you do business. If someone sends you a
file to edit and you don't trust them...scan it. Just as you might look
at VBA code before you run it...or disable a macro from someone you
don't know.=20
I hope MS DOESN'T worry about this one...cos' I'd hate to see some dev
trash an important field feature on the odd chance that someone might be
able to swipe a file from your system.
Sorry, but I find it funny that folks would worry about this far out
scenario happening, yet they have no problem running email scripts to
see pretty pictures in their email...from who knows who...which has such
a larger potential for trashing your system.
Dian Chapman
*************************************************************
You are receiving this mail because you subscribed to mso@xxxxxxxxxxxxx
or MicrosoftOffice@xxxxxxxxxxxxxxxx
To send mail to the group, simply address it to mso@xxxxxxxxxxxxx
To Unsubscribe from this group, send an email to=20
mso-request@xxxxxxxxxxxxx?Subject=3Dunsubscribe
Or, visit the group's homepage and use the dropdown menu. This will
also allow you to change your email settings to digest or vacation (no
mail). //www.freelists.org/webpage/mso
To be able to use the files section for sharing files with the group,
send a request to mso-moderators@xxxxxxxxxxxxx and you will be sent an
invitation with instructions. Once you are a member of the files group,
you can go here to upload/download files:
http://www.smartgroups.com/vault/msofiles
*************************************************************
*************************************************************
You are receiving this mail because you subscribed to mso@xxxxxxxxxxxxx
or MicrosoftOffice@xxxxxxxxxxxxxxxx
To send mail to the group, simply address it to mso@xxxxxxxxxxxxx
To Unsubscribe from this group, send an email to=20
mso-request@xxxxxxxxxxxxx?Subject=3Dunsubscribe
Or, visit the group's homepage and use the dropdown menu. This will
also allow you to change your email settings to digest or vacation (no
mail).
//www.freelists.org/webpage/mso
To be able to use the files section for sharing files with the group,
send a request to mso-moderators@xxxxxxxxxxxxx and you will be sent an
invitation with instructions. Once you are a member of the files group,
you can go here to upload/download files:
http://www.smartgroups.com/vault/msofiles
*************************************************************
*************************************************************
You are receiving this mail because you subscribed to mso@xxxxxxxxxxxxx or
MicrosoftOffice@xxxxxxxxxxxxxxxx
To send mail to the group, simply address it to mso@xxxxxxxxxxxxx
To Unsubscribe from this group, send an email to
mso-request@xxxxxxxxxxxxx?Subject=unsubscribe
Or, visit the group's homepage and use the dropdown menu. This will also allow
you to change your email settings to digest or vacation (no mail).
//www.freelists.org/webpage/mso
To be able to use the files section for sharing files with the group, send a
request to mso-moderators@xxxxxxxxxxxxx and you will be sent an invitation with
instructions. Once you are a member of the files group, you can go here to
upload/download files:
http://www.smartgroups.com/vault/msofiles
*************************************************************
Other related posts:
