From: "Hrvoje Mesing" 


"Geo"  wrote in message news:42f73160{at}w3.nls.net...
> "John Beckett" 
wrote in message
> news:7l8ef1hnk78tj9dkoa072evo3gvb9q7n1o{at}4ax.com...
>
>> You really should step back on this one! I would be the first to cheer
>> when you point out some stupid design decision in Microsoft or Cisco or
>> whatever systems. But THERE IS NO VULNERABILITY in Monad!
>
> In the strictest sense you are correct, there is no bug being exploited.
> But
> now realize that the lack of a security control could also enable
> something
> like oh I don't know lets say a public web server to be compromised
> because
> a scripting language can't be controlled so anyone with a website could
> purposely upload a script that infects all the other scripts on the
> system.
>
> DOES THAT NOT MAKE THE MACHINE VULNERABLE???
>
> I'm not saying that's what this is all about, I'm just trying to give you
> an
> idea why someone would have to create proof of concept code to make a
> point.
> Whether that point was for the programmers at MS or whether it was for an
> underground group of virus writers or DHS or whoever I've no idea. I just
> think it likely that it was for the guys writing the shell.


-+-

Yes it does :))))
There is a security control of course :) They are called Security
Permissions :))) As in NTFS Security Perms :) Which are controlled through
User Accounts.
So, if user has no right to write/modify certan points on the system there
is no problem right ? :)
If You are an Administrator (You want to be a "God" on the own
machine when logged in as an Admin, right ?! :) then You can break
everything everywhere in every point of time :)
So, Security Control is Your BRAIN - which should be mandatory for every
Administrator :)


-+-
M.

--- BBBS/NT v4.01 Flag-5