Possible RSS Abuse in Longhorn

dMill writes "There has been a lot of discussion about Microsoft's decision to bake RSS into Longhorn (see previous Slashdot coverage) but the obvious security implications seem to be on the back burner. eWeek has a story discussing the risks and Don Park is also warning about the potential for abuse and exploitation. For example, the primary mechanism behind podcast, RSS enclosure, can be used to deliver worms and worse to the desktops. If there are any vulnerabilities in iPod (or any MP3 player hooked up to podcast sync client) codec, then podcasting is a good way to deliver overflow inducing content."

Not IF there are vulnerabilities but WHAT they are

[WillAffleckUW]

let's not be obtuse - we know there are vulnerabilities, MSFT just doesn't want to fix them in a way that won't let them steal the underlying patents from the public and others.

[caveat - I own MSFT stock]

Script Kiddie Support API...

[__aaclcg7560]

I wouldn't be surprised if Microsoft is doing this on purpose to show that only their new anti-virus program will be effective against these new threats since the Script Kiddie Support API is undocumented for outside anti-virus companies.

Re:What!?

[akwebb]

Someone with (R)epetitive (S)tupidity (S)yndrome.

Can't it wait until it's close to a release?

[mac123]

Gee, a potential security risk in an OS that isn't anywhere near release.

Yeah, that'll impact...lemme count....uh...carry the one...NOBODY.

How about writing about something a bit more relevant instead of wasting cycles speculating about security risks that may/may not exist in components that may/may not be included in an OS that is due for release in what...3 years or so?

Re:Move along...no news here

[Punboy]

Then they go and design a huge mass of file formats that contain both data and binary.

I think you mean both raw data and executable machine code. Everything on your computer is binary.