Interesting article on the origins of the tea party
10 posts • joined 19 Jun 2009
@jeanl They already do that. They have links in the search results saying "This site may harm your computer"
I'd be interested to see this presentation but Google isn't coming up trumps at the moment.
Instead of every company making their own software updater can't we just have a unified system for this built into Windows?
The issue isn't really anything to do with the criterium for "executable by webserver" is the three-letter file ending.
The problem is people setting up a folder to hold user generated content under the web site root (as it needs to be served by the web server) but forgetting to deny IIS execute access for scripts on that folder. Maybe as they figured that it could only hold innocuous content anyway.
I've only used IIS 4 - 6 so maybe this has been improved in IIS7 but forgetting to reproduce these permissions is too easy to do when creating new sites by XCopy.
It is JIT compiled and possible to use NGEN to compile in advance.
Many of your example vulnerabilities aren't possible in C# hence making the language more secure.
On the Google UK page click the link that says "Go to Google.com"!
"3000 Upside Down" = WWW