[Date Prev][Date Next][Thread Prev][Thread Next][Minivend by date ][Minivend by thread ]

Re: [mv] It's about time....

To: minivend-users@minivend.com
Subject: Re: [mv] It's about time....
From: Kenn Martin <kmartin@infoteam.com>
Date: Thu, 3 Feb 2000 00:14:07 -0500
In-Reply-To: <3898B60D.588C3231@mmaz.com>; from treahy@mmaz.com on Wed, Feb 02, 2000 at 03:56:13PM -0700
References: <20000202170620.A13174@bill.minivend.com> <3898B60D.588C3231@mmaz.com>
Reply-To: minivend-users@minivend.com
Sender: owner-minivend-users@minivend.com

******    message to minivend-users from Kenn Martin <kmartin@infoteam.com>     ******

http://www.cert.org/advisories/CA-2000-02.html  works fine for me.

Kenn


On Wed, Feb 02, 2000 at 03:56:13PM -0700, Barry Treahy wrote:
> ******    message to minivend-users from Barry Treahy <treahy@mmaz.com>     ******
> 
> Does this mean CERT has been hacked?
> 
> Not Found
> 
> The requested URL / was not found on this server.
> 
> 
> Apache/1.3.9 Server at www.cert.org Port 80
> 
> barry
> 
> Mike Heins wrote:
> 
> > ******    message to minivend-users from Mike Heins <mikeh@minivend.com>     ******
> >
> > I have been waiting for this one
> >
> >     http://slashdot.org/article.pl?sid=00/02/02/1230219
> >
> > Some people have wondered why I make sure MV doesn't rely on JavaScript
> > or Java, and this is the reason why. There is finally a CERT advisory.
> >
> > There are some other words of caution, especially when allowing users
> > to send data to your site. (Embedding <FORM ...> tags is the most
> > potentially damaging.)
> >
> > I will be looking at this CERT advisory in detail, but I think
> > MV is pretty good to go as it stands. In MV4, you can make sure with
> > [value name=fname filter=entities].
> >
> > Because I expect that a percentage of users will be disabling JavaScript
> > -- especially ones in corporate environments; some already implement
> > proxies that strip <SCRIPT> </SCRIPT> -- I will be double-checking MV4
> > and its demo for problems.
> >
> > -- Mike Heins                          http://www.minivend.com/  ___
> >                                     Internet Robotics        |_ _|____
> > If you like what you're gettin',    131 Willow Lane, Floor 2  | ||  _
> > \ keep doin' what you're doin'.       Oxford, OH  45056         | || |_) |
> >  -- Hector                          <mikeh@minivend.com>     |___|  _ <
> >                                     513.523.7621 FAX 7501        |_| \_\

-
To unsubscribe from the list, DO NOT REPLY to this message.  Instead, send
email with 'UNSUBSCRIBE minivend-users' in the body to Majordomo@minivend.com.
Archive of past messages: http://www.minivend.com/minivend/minivend-list

Follow-Ups:
- Re: [mv] It's about time....
  - From: Barry Treahy <treahy@mmaz.com>

References:
- [mv] It's about time....
  - From: Mike Heins <mikeh@minivend.com>
- Re: [mv] It's about time....
  - From: Barry Treahy <treahy@mmaz.com>

Prev by Date: Re: [mv] Limiting Quantity
Next by Date: [mv] MV4.0alpha11 mySQL stragnge behaviour
Prev by thread: Re: [mv] It's about time....
Next by thread: Re: [mv] It's about time....
Index(es):
- Date
- Thread