|Subject:||Re: [Gnash-dev] Security and Gnash|
|Date:||Fri, 10 Aug 2007 12:22:25 +0200|
|User-agent:||Thunderbird 126.96.36.199 (X11/20070728)|
Markus Gothe wrote:
Basically I think it more secure because the end-user has the ability to see what really goes on, what kind of data the application is mining for and where it ends up etc...I went to the Flash Exploits talk last night, and it was great. As far as I can tell, none of the bugs he mentioned apply to Gnash at all. They are mostly implementation bugs, and not problems with flash itself. I have a PDF of his talk, plus all the code for the exploits. (http://www.flashsec.org), so I'll stick it in a test suite when I get back from the Chaos Camp. Good stuff. It turns out he's been playing with Gnash too, and likes it, so we're trying to see what we can all do together to make a *secure* flash player. I talked about the security layer in Gnash, and he says it all sounds like were going in the right direction. So we'll see what we can do to work together.
- rob -
|[Prev in Thread]||Current Thread||[Next in Thread]|