From: black.hole.4.spam{at}gmail.com (Don Hills)

In article , Mike N.
 wrote:
>On Sun, 12 Mar 2006 11:41:09 +1200, black.hole.4.spam{at}gmail.com (Don Hills)
>wrote:
>
>>About the only thing I do is update the browser to the
>>latest build every 6 months or so (I use Firefox).
>
>   In a company environment, this would also require that you study any OS
>patches to be sure they cannot be exploited remotely via the browser.

What OS patches? The few that have come out in the last few years have been
to add new function and fix non-security related bugs so I haven't needed
to apply them. In theory any vulnerability in the browser should be present
in the port I use, but since vulns are normally platform specific the
effect will be very different than for the Windows and Linux versions. The
most likely to succeed would be a Java exploit, but getting in via the vuln
is only the first part - once in you need to do something useful like
installing a rootkit, and you're back to platform specific code.

--
Don Hills    (dmhills at attglobaldotnet)     Wellington, New Zealand
"New interface closely resembles Presentation Manager,
 preparing you for the wonders of OS/2!"
    -- Advertisement on the box for Microsoft Windows 2.11 for 286

--- BBBS/NT v4.01 Flag-5