From: John Beckett 

"Geo."  wrote in message
news::
> more info to work with.. we were talking about POC code and what the author
> was trying to prove, well here are his own words. All I have to say is monad
> had better be disabled by default because if this is enabled on every box
> it's going to be a virus writers wet dream.

I stuggled through reading the wet dream of the PoC that you posted.

It is all SO OBVIOUS! Of course a scripting language can find other files,
and can change the contents of those files! (But only if the user running
the script has permission.)

Every NT3 and NT4 computer (IIRC) had QBasic. You must have played the
Gorilla Bananna game (a programming masterpiece, BTW). Surely it occurred
to you that while tossing bannanas, the gorilla could very easily also
change files.

You wanted XP to have raw sockets. Now you want a scripting language that
can't change files?

For the "PoC" to be anything more than a wet dream, an intruder
would have to get you to run a program on your computer. At that point, it
is game over. The program might be QBasic, or a batch file, or Monad, or
whatever. It makes no difference to the result of the game.

If your point is that having a scripting language enabled would make it
easier to do other mischief once an intruder took control of your box, I
suppose I would agree. You can make that point at the same time as laughing
at the naivety of the news agencies that reported the alleged PoC as a news
item.

John

--- BBBS/NT v4.01 Flag-5