Is "Decode" option secure ?

General discussion about PopTray. You love it? You hate it? Talk about it here.

Moderators: KY Dave, jojobear99, Rdsok

Post Reply
Gerapa
Enthusiast
Posts: 38
Joined: Mon Mar 04, 2002 3:49 pm
Location: Belgium

Is "Decode" option secure ?

Post by Gerapa » Mon Jun 03, 2002 11:54 pm

Hi all,

Is there a risk to use the "Decode preview message" option ? Could some script or active X virus be run if this option is in use ?

Thanks for the help,

Serge.

User avatar
Curtz
Priceless
Posts: 552
Joined: Tue Nov 27, 2001 3:52 am
Location: A nice tree

Post by Curtz » Tue Jun 04, 2002 3:00 am

It is just decoded as text as far as I know, not executed or send to a HTML viewer or anyting... it is why I use it to view mails that I don't really trust...
Last edited by Curtz on Sat Jun 15, 2002 9:17 pm, edited 1 time in total.

Gerapa
Enthusiast
Posts: 38
Joined: Mon Mar 04, 2002 3:49 pm
Location: Belgium

Post by Gerapa » Sat Jun 15, 2002 6:21 am

Ok, thank you very much for your answer.

Serge.

User avatar
ilNebbioso
PopTray Family
Posts: 773
Joined: Fri Feb 01, 2002 10:30 am
Location: Milan, Italy
Contact:

Post by ilNebbioso » Thu Jun 20, 2002 6:39 pm

My experience with PopTray says that my Norton Antivirus Corporate Edition 7.6 stops decoding of infected files while previewing....

Curtz, isn't it totally different from what you say? :oops:

ilNebbioso®

User avatar
Curtz
Priceless
Posts: 552
Joined: Tue Nov 27, 2001 3:52 am
Location: A nice tree

Post by Curtz » Thu Jun 20, 2002 7:44 pm

The real issue here is: can poptrays decoder EXECUTE attachments or HTML code. I think not. I just think Norton recoqnizes a virus pattern in the data that poptray retrieves, but I can hardly imagine that PopTray can execute any code.

Renier?

User avatar
Renier
Site Admin
Posts: 1957
Joined: Mon Oct 15, 2001 12:54 pm
Location: Cape Town, South-Africa
Contact:

Post by Renier » Thu Jun 20, 2002 7:50 pm

No, PopTray never executes any HTML. I've had requests to show the HTML message (using IE component), but I don't want to include that into PopTray.

The Indy component that PopTray uses saves the attachments to disk when you preview, and NAV recognizes the virus then.

Gerapa
Enthusiast
Posts: 38
Joined: Mon Mar 04, 2002 3:49 pm
Location: Belgium

Post by Gerapa » Fri Jun 21, 2002 5:12 am

Thank you again all and Renier for the clear answers. I have now turned the option "ON" with no fear.

Serge.

Post Reply

Who is online

Users browsing this forum: No registered users and 6 guests