Re: --==CELERON 466Mhz ONLY $1.95 -- it's real, it's work===---

On Tue, 12 Oct 1999 09:02:25 -0400, rumours say that "Arvin Meyer" <a_at_m.com> might have written:

>Terje Krogdahl wrote in message ...
>>"Arvin Meyer" <a_at_m.com> writes:

>>> Allright, we know this is spam. But how did this joker force my browser
>to
>>> open at the page below?

>>The evil kid assumed that you were using a webbrowser with javascript
>>support to read news, and posted his message as both text/plain and
>>text/html. Your browser selected HTML, parsed the html code, and as
>>it came across this line:
>>
>><BODY
>onload="window.open('http://bla blal','RemoteWindow')
>">
>
>>it popped up a new window with the website in it. Both Netscape and
>>IE has a history of serious javascript related bugs, so you'd be better
>>off without javascript. What this really shows is one of the many good
>>reasons not to allow HTML in news postings.

>Thanks for the info. It is the newsreader that is accepting HTML. I wish I
>could turn it off, but that doesn't appear possible. Perhaps I can persuade
>Mindspring to filter HTML from their news servers.

Mind you, it doesn't matter if Mindspring does filter out HTML in their newsfeed. Care to know why I dropped Outlook 98 (don't even mention OE) as my mail-reader? Scripts embedded in HTML encoded e-mail messages work too. Since I didn't like that at all, I got back to Agent being my e-mail manager.

Now, suppose I am a script embedded in a HTML-encoded e-mail you get, Arvin; I wonder how much functionality the Parent object (that is, OE in your case) does expose... I'm just speculating, of course. --
I am Greeks and I speak England very best, TZOTZIOY, ICQ# 13397953
(when e-mailing delete the 'deletethispart' part) Received on Tue Oct 12 1999 - 09:24:33 CDT