The insane spitfire video clip

"Teacherjh" wrote in message
...
... and those who filter out .wmv files in their entirety (because of
payloads)
won't get to see them.

Why not just set your security settings so that the scripts contained in WMV
files aren't run?

If a format is not trustworthy, it shouldn't be used.

The format is perfectly trustworthy, just as much as any "web-friendly"
format is, as long as you have a clue about what you're doing with your
computer. If you don't trust WMV files, you shouldn't ever open any web
browser.

Pete

On Mon, 27 Oct 2003 12:08:38 -0800, "Peter Duniho"
wrote in Message-Id:
:

The format is perfectly trustworthy, just as much as any "web-friendly"
format is, as long as you have a clue about what you're doing with your
computer.

The majority of video compression formats do not support windows
scripting. In fact, I know of no other.

If you don't trust WMV files, you shouldn't ever open any web
browser.

You don't have to open a browser; WMV files will do that for you
whether you want it or not.

In a previous article, "Peter Duniho" said:
"Paul Tomblin" wrote in message
...
Jay didn't create the file. Therefore he has no way of knowing what it
does or doesn't include.

It is silly to claim that just because someone is not the creator, that they
have no way of knowing what's in the file.

It is? How would he know what's in it, then? I tell you what, I'll put a
file on my web site. I'll bet you $10,000 that Jay won't be able to tell
if it has malicous code in it.


--
Paul Tomblin http://xcski.com/blogs/pt/
You'll get access to my computer room right after you pry the Halon test
key out of my cold, lifeless hands.
-- Simon Travaglia

It is? How would he know what's in it, then? I tell you what, I'll put a
file on my web site. I'll bet you $10,000 that Jay won't be able to tell
if it has malicous code in it.

Hey -- for $10K, I'll take the time to learn whichever programming language
is necessary to beat that bet!

And, by the way: You misspelled "malicious"...

;-)
--
Jay Honeck
Iowa City, IA
Pathfinder N56993
www.AlexisParkInn.com
"Your Aviation Destination"

"Larry Dighera" wrote in message
...
The majority of video compression formats do not support windows
scripting.

So what?

If you don't trust WMV files, you shouldn't ever open any web
browser.

You don't have to open a browser; WMV files will do that for you
whether you want it or not.

You are missing the point. First of all, WMV files won't open a browser on
my computer; if you choose to allow that on your computer, that's a choice
you have to live with.

Secondly, my comment about not opening a web broswer was simply addressing
the fact that you have the EXACT same vulnerability when playing a WMV file
(if you've chosen to expose yourself to that vulnerability) as you have when
surfing the web. A WMV file cannot do anything that any random HTML page
can't do. If you feel insecure playing a WMV file, you should feel insecure
navigating to any web page.

Pete

"Paul Tomblin" wrote in message
...
It is? How would he know what's in it, then? I tell you what, I'll put a
file on my web site. I'll bet you $10,000 that Jay won't be able to tell
if it has malicous code in it.

By that metric, Jay's entire web site should be avoided. After all, I doubt
he could tell you whether ANY page on his web site has malicious code in it.
The fact that he originally created the content in no way ensures him that
it's safe.

The point is that the file format is not opaque, and it's trivial to
determine whether it's potentially dangerous or not. Jay's own technical
expertise isn't really the issue.

Pete

Why not just set your security settings so that the scripts contained in WMV
files aren't run?


I do have them that way. Scripts are off, java is off, animation is off,
popups are off. But if I download a .wmf file and run it from a player that
has nothing to do with the internet, it still tries to log me on and take me
somewhere, if that's what the script says to do, and I have no clue as to how
to tell these players not to even try. (they never get anywhere because
whenever I need to see a .wmf file I pull the plug on the internet)

If you have a clue, please tell me how to run a wmf file in media player, movie
player, quicktime, imaging, or vueprint pro without triggering the scripts
hidden inside.

Jose

--
(for Email, make the obvious changes in my address)

"Teacherjh" wrote in message


I do have them that way. Scripts are off, java is off, animation is
off, popups are off. But if I download a .wmf file and run it from a
player that has nothing to do with the internet, it still tries to
log me on and take me somewhere, if that's what the script says to
do, and I have no clue as to how to tell these players not to even
try. (they never get anywhere because whenever I need to see a .wmf
file I pull the plug on the internet)

If you have a clue, please tell me how to run a wmf file in media
player, movie player, quicktime, imaging, or vueprint pro without
triggering the scripts hidden inside.

Have you tried the settings in Tools | Options | Security?

Uncheck the "Run script commands when present" and
Check "Do not run script commands...inside a web page."

I don't have a page to test these with, but I believe that's what these
options are intended to deal with.

--
John T
http://tknowlogy.com/tknoFlyer
_______________

"John T" wrote in message
ws.com

I don't have a page to test these with, but I believe that's what
these options are intended to deal with.

BTW, that's in Windows Media Player (I'm using v9).

--
John T
http://tknowlogy.com/tknoFlyer
_______________

My version of Windows Media Player does not have those options (v.7)

Jose

--
(for Email, make the obvious changes in my address)