- From: Rohit Khare <khare@pest.w3.org>
- Date: Wed, 13 Mar 96 15:02:52 -0500
- To: Conaghan@aol.com
- Cc: www-demographics@w3.org
I think it's an extreemely serious concern, and entirely out of our hands. There are safeguards in the HTTP spec to make email-addr-disclosure voluntary in HTTP messages, but these recent holes are all based on JavaScript. The other source to note is the existing TCP identd infrastructure (generally UNIX-only), which will happily return the login name of the connection-initiator (and you already have an IP address). Rohit Khare Begin forwarded message: Date: Wed, 13 Mar 1996 12:33:45 -0500 From: Conaghan@aol.com To: khare@w3.org Subject: Re: Onliners join to back consumer education campaign Rohit, Is there any concern about that recently reported (Infoworld, March 4) problem noted by Glenn Fleishman, Popco, about a server automatically retreiving e-mail addresses from appropriately configured browsers? ---------------------------------------------- James Conaghan conaghan@ix.netcom.com Director, Market & Business Analysis Newspaper Association of America 14 Canoe Brook Parkway Summit, NJ 07901 Vox: 908-522-3115 ----------------------------------------------
Received on Wednesday, 13 March 1996 15:01:32 UTC