Serious New Breach Found in
Browsers;
Microsoft and Netscape confirm newly discovered security hole puts
confidential information exchanged via Internet browsers at risk. Fix may
take weeks. Flaw can occur when filling out a form at a Web site, such as
credit card information to complete a transaction. That data is exchanged
in encrypted format, but if the visitor then links to another site, the
info typed in at the first site gets transferred to the next site's logs,
credit card number and all. And those logs are often unprotected. The
exclusive ZDNN report on this latest flaw (linked in the sidebar) comes as
Microsoft releases a new version of its browser that fixes previously
reported security breaches. The company, promising to be more vigilant,
advises anyone running Internet Explorer 3.0, 3.01 or 3.01 with patches to
download the de-bugged version 3.02, which comes with a number of
enhancements. Our take: Security holes are insidious. Get one fix posted,
two more crop up. Download this new version, but be on the lookout for the
next problem.
Microsoft Warns of Email Dangers
Company wants users running its email products to understand viruses and
malicious code can
enter a corporate system via email attachments. An add-on for Messaging
API 32 email clients
(linked at left) will warn users of Microsoft Exchange, Outlook 97 and Win
95 in-box about
potential dangers, so they can decide whether or not to open a file. The
feature does not
detect or remove bad code. Users still need anti-virus software to screen
incoming
attachments, which may automatically launch when an email message is
opened. One more
time: Be alert.
ISPs Irate Over Shoddy Treatment by Domain Name Registry
The organization that manages the domain name registry is under fire for
putting hundreds of
active domain names on hold, disrupting thousands of personal accounts and
creating untold
number of email problems. Internet Service Providers say InterNIC began
dropping domain
names with little or no warning last week. One company president paid his
annual $50 bill by
credit card March 17; two days later his domain was deleted. Bulletin
boards and Internet lists
are seething with complaints about the registry service, which ISPs
contend is poorly managed
and difficult to do business with. What's your take? Join our Rant & Rave
discussion forum
where today's topic is domain name hassles.
PacTel Asks FCC to Let It Charge ISPs a Penny Per Minute
Another flare-up between the warring telcos and Internet Service
Providers. Pacific Bell is
asking the Federal Communications Commission to let it charge ISPs a penny
for every minute
they're connected to PacTel's voice network. Revenue would help phone
companies supply
alternative high-speed technologies. PacTel says overburdened telephone
systems at risk
now. ISPs say those kinds of charges will run many of them out of business
before new
networks ever arrive. Would cost most users about $6 more per month but
could be prohibitive
for heavy users. They point to an earlier study suggesting Bell companies
are profiting now
from ISPs. Loud and clear: AnchorDesk readers didn't mince words when we
asked for
TalkBack on the Internet access issue last month (see "Exert Your
Influence" article at left). This
hand is far from played out, but at least we're starting to see some cards
on the table.
-
Anyway, that's just my opinion, meant to confuse and disorient...
<> tbyars@earthlink.net <>