[Prev][Next][Index][Thread]

Re: Onliners join to back consumer education campaign



I think it's an extreemely serious concern, and entirely out of our hands.  
There are safeguards in the HTTP spec to make email-addr-disclosure voluntary  
in HTTP messages, but these recent holes are all based on JavaScript.

The other source to note is the existing TCP identd infrastructure (generally  
UNIX-only), which will happily return the login name of the  
connection-initiator (and you already have an IP address).

Rohit Khare

Begin forwarded message:

Date: Wed, 13 Mar 1996 12:33:45 -0500
From: Conaghan@aol.com
To: khare@w3.org
Subject: Re: Onliners join to back consumer education campaign

Rohit,

Is there any concern about that recently reported (Infoworld, March 4)
problem noted by Glenn Fleishman, Popco, about a server automatically
retreiving e-mail addresses from appropriately configured browsers?
----------------------------------------------
James Conaghan          conaghan@ix.netcom.com
Director, Market & Business Analysis
Newspaper Association of America
14 Canoe Brook Parkway
Summit, NJ 07901
Vox: 908-522-3115
----------------------------------------------