Re: why microsoft choose mfc rather than wtl?
- From: Daniel James <wastebasket@xxxxxxxxxxxxxxxx>
- Date: Fri, 15 Apr 2005 14:24:11 +0100
In article news:<MPG.1cc6d1d0f86740e98969a@xxxxxxxxxxxxxxxxxx>, Jerry Coffin
wrote:
> > In an ideal world the browser wouldn't support potentially insecure
> > operations at all, and users wouldn't have to do this.
>
> I hope you'll pardon my being contrary, but I have to disagree. While
> security is a major concern in the real world, in anything I'd call
> even close to an ideal world, browsers (and pretty much everything
> else) would be entirely insecure, because security simply wouldn't be
> a concern for anybody.
I'm clearly too much of a cynic to believe in a world *that* ideal <smile>
... I just meant that in a world in which you could trust the good guys to Do
The Right Thing (TM) and you only had the bad guys to worry about there would
be no question of browsers supporting insecure operation.
I'd much rather live in your ideal world than mine ... just leave the keys
under the mat!
> Yes, but IE (among others) supports security zones. This makes it
> fairly easy for the user to allow operations on this particular site
> but not for the web as a whole.
That helps, certainly. I think the granularity of "Zones" is too coarse ... I
often want to lower the security of the browser in different ways and by
different extents to different sites ... but it's better than nothing (and
not as good as it should be).
> > A sufficiently pissed-off customer might even try to sue you for
> > compromising their security with your application's settings.
>
> He could certainly try -- but no reasonable court would hear the
> case. Of course, given the state of the courts today, that shouldn't
> be viewed as reassuring at all.
Indeed, one has to protect against what *might* happen, not just what
*should* be able to!
Cheers,
Daniel.
--
Just because you're paranoid, that doesn't mean that they're /not/ out to get
you -- but they might just be out to get someone else.
.
- References:
- why microsoft choose mfc rather than wtl?
- From: Huang Shu Huai
- Re: why microsoft choose mfc rather than wtl?
- From: Joseph M . Newcomer
- Re: why microsoft choose mfc rather than wtl?
- From: Daniel James
- Re: why microsoft choose mfc rather than wtl?
- From: Joseph M . Newcomer
- Re: why microsoft choose mfc rather than wtl?
- From: Daniel James
- Re: why microsoft choose mfc rather than wtl?
- From: Russ
- Re: why microsoft choose mfc rather than wtl?
- From: Daniel James
- Re: why microsoft choose mfc rather than wtl?
- From: Russ
- Re: why microsoft choose mfc rather than wtl?
- From: Daniel James
- Re: why microsoft choose mfc rather than wtl?
- From: Jerry Coffin
- why microsoft choose mfc rather than wtl?
- Prev by Date: Re: why destructor is not called
- Next by Date: Re: extension dll linking with extension dll
- Previous by thread: Re: why microsoft choose mfc rather than wtl?
- Next by thread: Re: why microsoft choose mfc rather than wtl?
- Index(es):
Relevant Pages
|
