[XML-DEV Mailing List Archive Home] [By Thread] [By Date] [Recent Entries] [Reply To This Message]

Re: Excellent IETF BCP on XML

• To: Miles Sabin <miles@m...>
• Subject: Re: Excellent IETF BCP on XML
• From: Paul Prescod <paul@p...>
• Date: Mon, 16 Dec 2002 05:03:30 -0800
• Cc: XML Dev <xml-dev@l...>
• In-reply-to: <B885BEDCB3664E4AB1C72F1D85CB29F8040EF7D9@R...>
• References: <B885BEDCB3664E4AB1C72F1D85CB29F8040EF7D9@R...> <200212130851.37443.miles@m...> <3DFD2FB6.1070804@p...> <200212160902.26956.miles@m...>
• User-agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-US; rv:1.2b) Gecko/20021016

Miles Sabin wrote:

>
> But my point still stands. It isn't just clients executing retrieved
> "active" content that represents a risk: flaws in the clients
> implementation of the base protocol can be just as dangerous. 

True, but true also of any other protocol all the way down to IP or 
Ethernet. Let's just say that HTTP GET is as safe as it is possible for 
a network operation to be.

> So how much do you trust the implementations of the network clients 
> you use? Do you trust them enough to have a process feed them 
> arbitrary  URIs for dereferencing while left unattended?

Google and Alta Vista do, with no apparent ill effects.

  Paul Prescod

• Follow-Ups:
  • Re: Excellent IETF BCP on XML
    • From: Miles Sabin <miles@m...>

• References:
  • Re: Excellent IETF BCP on XML
    • From: Miles Sabin <miles@m...>
  • Re: Excellent IETF BCP on XML
    • From: Paul Prescod <paul@p...>
  • Re: Excellent IETF BCP on XML
    • From: Miles Sabin <miles@m...>

• Prev by Date: Re: Re: W3C Schema substitution-group question - the files
• Next by Date: Re: XML2002 Conference in Baltimore?
• Previous by thread: Re: Excellent IETF BCP on XML
• Next by thread: Re: Excellent IETF BCP on XML
• Index(es):
  • Date
  • Thread