From: “Perry E. Metzger” <perry@piermont.com>
To: Aleph One <aleph1@dfw.net>
Message Hash: d915aff300f84d2714b4933ea890f9d0ec5640998439cda76992023f97dc4fe9
Message ID: <199510100547.BAA00623@jekyll.piermont.com>
Reply To: <Pine.SUN.3.90.951010002834.2770A-100000@dfw.net>
UTC Datetime: 1995-10-10 05:48:05 UTC
Raw Date: Mon, 9 Oct 95 22:48:05 PDT
From: "Perry E. Metzger" <perry@piermont.com>
Date: Mon, 9 Oct 95 22:48:05 PDT
To: Aleph One <aleph1@dfw.net>
Subject: Re: java security concerns
In-Reply-To: <Pine.SUN.3.90.951010002834.2770A-100000@dfw.net>
Message-ID: <199510100547.BAA00623@jekyll.piermont.com>
MIME-Version: 1.0
Content-Type: text/plain
Aleph One writes:
> Iam sorry I dont fallow your logic. You find Postscript files
> save because you can set up the interpreter to ignore Postscript commands
> to write to files and execute programms (check the CIAC alerts), yet
> you find Java applets insecure even when you can set up the same
> restrictions and more under HotJava (and hopefully Netscape)?
> That does not compute.
Yes it does.
To (perhaps over)simplify my point, the Java interpreter cannot be
stripped of all i/o capabilities and still remain useful. I can
physically remove all the "dangerous" calls from a Postscript
interpreter and still have it be useful.
Perry
Return to October 1995
Return to “sameer <sameer@c2.org>”