| TIP: Click on subject to list as thread! | ANSI |
| echo: | |
|---|---|
| to: | |
| from: | |
| date: | |
| subject: | Re: Why? |
From: "Geo"
"Tony Williams" wrote in message
news:4358073c$1{at}w3.nls.net...
> What about RFC 2047? That appears to allow 7-bit encoding of unicode
> subjects.
Thanks, I'm astounded that the people writing these RFC's have no concept
of security requirements. Read this quote from that RFC:
A mail reader need not attempt to display the text associated with an
'encoded-word' that is incorrectly formed. However, a mail reader
MUST NOT prevent the display or handling of a message because an
'encoded-word' is incorrectly formed.
What were they smoking? I can just picture these people writing a password
specification "the password checking routine must not fail because a
password is incorrectly formed"...
No wonder Outlook Express and IE are such huge security problems, I always
thought it was MS's fault but it's not, the specifications require them to
be insecure.
Geo.
--- BBBS/NT v4.01 Flag-5
* Origin: Barktopia BBS Site http://HarborWebs.com:8081 (1:379/45)SEEN-BY: 633/267 270 5030/786 @PATH: 379/45 1 106/2000 633/267 |
|
| SOURCE: echomail via fidonet.ozzmosis.com | |
Email questions or comments to sysop@ipingthereforeiam.com
All parts of this website painstakingly hand-crafted in the U.S.A.!
IPTIA BBS/MUD/Terminal/Game Server List, © 2025 IPTIA Consulting™.