LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

General problem needs a general solution

General problem needs a general solution

Posted Apr 1, 2005 14:39 UTC (Fri) by kevinbsmith (guest, #4778)
In reply to: Unexpected features in Acrobat 7 by rro
Parent article: Unexpected features in Acrobat 7

Even if your proxy does block RemoteApproach itself, it won't block other similar "attacks". RemoteApproach could register a new domain every month. Competitors may spring up. Someone may create a tool that allows PDF authors to embed tracking that goes to an arbitrary site of the author's choosing.

Since the javascript plugin is a general tool, it is best blocked with a general approach.

I don't use acroread myself, but I will recommend to my friends that they disable acroread plugins entirely (as described in posts above), at least as a starting point. I wonder what other privacy and/or security vulnerabilities lurk within those (closed source) plugins.

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds