From mboxrd@z Thu Jan 1 00:00:00 1970 X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on polar.synack.me X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham autolearn_force=no version=3.4.4 X-Google-Language: ENGLISH,ASCII-7-bit X-Google-Thread: 103376,9b30240b5a381bbf X-Google-Attributes: gid103376,public X-Google-ArrivalTime: 2002-08-24 19:29:37 PST Path: archiver1.google.com!news1.google.com!newsfeed.stanford.edu!logbridge.uoregon.edu!xmission!news-out.spamkiller.net!propagator-maxim!news-in.spamkiller.net!feed.newsfeeds.com!newsfeed.onecall.net!chcgil2-snf1.gtei.net!news.gtei.net!news.binc.net!kilgallen From: Kilgallen@SpamCop.net (Larry Kilgallen) Newsgroups: comp.lang.ada Subject: Re: mailers, quoting text etc. (was Ada 95 for an ARM-based bare board?) Date: 24 Aug 2002 21:29:28 -0600 Organization: LJK Software Message-ID: <8XQe9BQ4ry8M@eisner.encompasserve.org> References: <5ee5b646.0208241357.39e0956a@posting.google.com> NNTP-Posting-Host: eisner.encompasserve.org X-Trace: grandcanyon.binc.net 1030241549 3593 192.135.80.34 (25 Aug 2002 02:12:29 GMT) X-Complaints-To: abuse@binc.net NNTP-Posting-Date: Sun, 25 Aug 2002 02:12:29 +0000 (UTC) Xref: archiver1.google.com comp.lang.ada:28384 Date: 2002-08-24T21:29:28-06:00 List-Id: In article <5ee5b646.0208241357.39e0956a@posting.google.com>, dewar@gnat.com (Robert Dewar) writes: > "Robert C. Leif" wrote in message news:... > >> I would be surprised if some Microsoft Wizardry made any unseen additions. > > Really? > > Typical microsoft mailers make the unseen addition of completely useless > HTML by default that is > > a) redundant and serves no purpose > b) wastes bandwidth and clutters up databases > c) presents a security risk (HTML attachments are not benign!) The defects introduced by Microsoft starting with Word 6 (allowing instructions provided by someone else to execute in the context of the recipient) were originated by IBM under the CMS system with a text formatting extension. IBM retracted that "innovation" and discussed it at subsequent security conferences for several years. Only then did Microsoft "innovate" with their own implementation, apparently choosing not to bother studying anything else that has happened in the computer industry. > But I guess none of these (especially c) has ever been of any concern to MS :-) There have been public statements from Microsoft that the "features" provided by these loopholes are more important to their customers than fixing security problems.