HTA files WAS Re: [thelist] Automate zip?

Fri May 28 05:54:27 CDT 2004

The "horror" that Diane may be referring to is the fact that you can do
pretty much anything to your local filesystem using scripting in HTA's. For
those of you that don't know, an HTA is Microsoft's "HTML Application" --
basically HTML plus scripting with some extra goodies available, renamed as
a .hta file -- but especially it has rights to your local filesystem.

Thankfully, the default security settings on MSIE prevent you opening these
from outside your trusted zone (don't know if my jargon is correct here) but
basically you can't open these from the internet, so perhaps it's not quite
the horror that Diane foresaw.

Just a guess...

David

-- 
David Landy, IT Consultant, Business Intelligence
Somerfield/KwikSave Support Centre
Whitchurch, Bristol, UK. Tel: 0117 301 8977
david.landy at somerfield.co.uk <mailto:david.landy at somerfield.co.uk>    

This is the true joy of life. The being used for a purpose 
Recognized by yourself as a mighty one. 
George Bernard Shaw

-----Original Message-----
From: Ken Schaefer [mailto:ken at adOpenStatic.com]
Sent: Friday, 28 May 2004 01:33
To: thelist at lists.evolt.org
Subject: HTA files WAS Re: [thelist] Automate zip?

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
From: "Diane Soini" <dianesoini at earthlink.net>
Subject: Re: [thelist] Automate zip?

: Then I wrapped it all up in a .hta file. I had never seen one of those 
: before. The horror! No wonder Windows computers are so vulnerable. 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Care to elaborate?

Cheers
Ken
-- 
* * Please support the community that supports you.  * *
http://evolt.org/help_support_evolt/

For unsubscribe and other options, including the Tip Harvester 
and archives of thelist go to: http://lists.evolt.org 
Workers of the Web, evolt ! 

If you are not the intended recipient of this e-mail, please preserve the
confidentiality of it and advise the sender immediately of any error in
transmission. Any disclosure, copying, distribution or action taken, or
omitted to be taken, by an unauthorised recipient in reliance upon the
contents of this e-mail is prohibited. Somerfield cannot accept liability
for any damage which you may sustain as a result of software viruses so
please carry out your own virus checks before opening an attachment. In
replying to this e-mail you are granting the right for that reply to be
forwarded to any other individual within the business and also to be read by
others. Any views expressed by an individual within this message do not
necessarily reflect the views of Somerfield.  Somerfield reserves the right
to intercept, monitor and record communications for lawful business
purposes.