Firewall Wizards mailing list archives
Re: HTML Emails and Firewall Security
From: "Fabio Pietrosanti (naif)" <fabio () pietrosanti it>
Date: Fri, 1 Aug 2003 12:05:43 +0200
Unfortunatelly the Microsoft way of "securing" application often fails: http://lists.insecure.org/lists/bugtraq/2003/Jul/0058.html And they are not going to fix it. On Wed, Jul 30, 2003 at 09:41:50PM -0400, Bill Royds wrote:
The new Microsoft Outlook client has several levels of HTML filtering from text only to "html only with no images or script or other links" to html with no script but with embedded images to full blown HTML. The second level (HTML formatting for text but no other HTML) is probably the best for most users. It allows some structure in a message (heading, italic, bold, tabular data) to help convey information in a more readable fashion than plain text, but limits the effects of scripts or web bugs.
-- Fabio Pietrosanti ( naif ) E-mail: fabio () pietrosanti it - naif () sikurezza org PGP Key available on my homepage: http://fabio.pietrosanti.it/ -- Security is a state of being, not a state of budget. rfp -- _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: HTML Emails and Firewall Security Fabio Pietrosanti (naif) (Aug 01)
- Re: HTML Emails and Firewall Security Bill Royds (Aug 02)
- RE: HTML Emails and Firewall Security dave kleiman (Aug 03)
- <Possible follow-ups>
- Re: HTML Emails and Firewall Security Victoria of Borg (Aug 07)
- Re: HTML Emails and Firewall Security Bill Royds (Aug 02)