VALARM iCal Component executable attachment

bhav
2012-07-06
2013-06-05
  • bhav

    bhav - 2012-07-06

    how does ical4j prevent a virus or malicious attack through the VALARM component of type procedure which can have attachments containing an executable program ?
    Thanks
    Bhav

     
  • Ben Fortuna

    Ben Fortuna - 2012-07-08

    Hi Bhav,

    It isn't really the responsibility of library (or the iCalendar specification) to protect against malicious software. Ultimately if you use the library to process attachments there will be somewhere in your code where you choose to save/execute attachments. It is up to the developer to decide whether to rely on the underlying operating system (and third party tools) or to include some kind of inline processing (not sure about such things, but I am guessing there are some options available).

    regards,
    ben

     

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks