Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!swrinde!elroy.jpl.nasa.gov!lll-winken!iggy.GW.Vitalink.COM!widener!netnews.upenn.edu!vax1.cc.lehigh.edu!cert.sei.cmu.edu!krvw
From: bcarter@claven.idbsu.edu
Newsgroups: comp.virus
Subject: HyperCard anti-virus script bad (Mac)
Message-ID: <0008.9104101917.AA00785@ubu.cert.sei.cmu.edu>
Date: 10 Apr 91 02:49:12 GMT
Sender: Virus Discussion List <VIRUS-L@LEHIIBM1>
Lines: 19
Approved: krvw@sei.cmu.edu

Greetings,

The script posted by mike@pyrite.SOM.CWRU.Edu (Michael Kerner) to
prevent HyperCard virus attacks has several problems.  First of all,
it doesn't pass any set messages that DON'T have script in the params,
thereby disabling every other use of the set command.  Secondly, it
gives a false sense of security since any such handler anywhere can be
bypassed by a simple statement of the form:

send "set whatever to whatever" to HyperCard

Using the send ... to HyperCard format bypasses all intermediate handlers.

Bruce Carter, Courseware Development Coordinator            Lab: (208) 385-1859
Faculty Development Lab - Room 213                       Office: (208) 385-1250
Simplot/Micron Technology Center                       CompuServe ID: 76666,511
Boise State University                            CREN (BITNET): duscarte@idbsu
1910 University Drive                        Internet: duscarte@idbsu.idbsu.edu
Boise, ID  83725                        --> Preferred: bcarter@claven.idbsu.edu