[NTLK] Read about Yahoo's new way to prevent email virus attacks?

From: Jim Witte (jswitte_at_bloomington.in.us)
Date: Thu Jul 15 2004 - 21:19:14 EDT


  Has anybody else noticed this,
http://yro.slashdot.org/yro/02/07/15/2039227.shtml?tid=153

  Apparently, Yahoo, attempting to stop "cross-site scripting attacks"
initiated using Javascript, Java and other malicious bits of code people
embed into HTML email, have started replacing words in emails. 'Mocha'
(original name of Java) becomes 'expresso', 'javascript' becomes
'java-script' (not bad), and 'eval' becomes 'review' This wouldn't be too
bad, except that it apparently happens even when the "words" are *inside*
other words. So 'midaeval' becomes 'midireview'! As one commenter on /.
said, why not just replacing things inside <script> or <applet> tags?
Sheesh! Anybody here have yahoo accounts?

Jim

-- 
Read the List FAQ/Etiquette: http://www.newtontalk.net/faq.html
Read the Newton FAQ: http://www.guns-media.com/mirrors/newton/faq/
This is the NewtonTalk mailing list - http://www.newtontalk.net



This archive was generated by hypermail 2.1.2 : Thu Aug 01 2002 - 06:02:39 EDT