[funsec] A Hacker Dream Come True: Adobe and Yahoo Tests Ads InsidePDF Documen ts

silky michaelslists at gmail.com
Thu Nov 29 02:00:50 CST 2007 

ad's have been coming to pdf's for years now though. you'd have to be
blind not to have seen it. adobe even have a little slot for it in
their later readers.

it does seem like an incredibly bad idea.

maybe one day we can get a nice non-writable format that is simple and
will never change. complexity is bad :)

anyway a format is only as safe as it's reader. so what we really need
is a nice, secure, pdf reader. foxit i use, but i'm sure there are
others.


On 11/29/07, Jamz_Yaneza at trendmicro.com <Jamz_Yaneza at trendmicro.com> wrote:
> Oh just great ... Not!
>
> After being touted as one of the safer formats to use
> (thus lots of government sites now use PDF), in one
> fell swoop you go ahead and shoot yourself on the foot
> and make yourself vulnerable.
>
> Wonders never cease.
>
> Cheers,
> --Jamz
>
> > -----Original Message-----
> > From: funsec-bounces at linuxbox.org
> > [mailto:funsec-bounces at linuxbox.org] On Behalf Of Paul Ferguson
> > Sent: Thursday, November 29, 2007 2:37 PM
> > To: funsec at linuxbox.org
> > Subject: [funsec] A Hacker Dream Come True: Adobe and Yahoo
> > Tests Ads InsidePDF Documen ts
> no-trend-disclaimer:
> > Y-----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > eah. That's what I thought.
> >
> > Via Reuters.
> >
> > [snip]
> >
> > Software maker Adobe Systems Inc and Internet company Yahoo
> > Inc said on
> > Wednesday they will offer a service to let publishers run
> > advertisements in
> > Adobe's popular document-reading format.
> >
> > The new service, Ads for Adobe PDF Powered by Yahoo, presents
> > publishers
> > with an alternative to conventional subscriptions, which, if widely
> > adopted, could open up a new model based on free,
> > ad-supported publishing,
> > analysts said.
> >
> > [snip]
> >
> > More:
> > http://www.reuters.com/article/technologyNews/idUSN2754715120071129
> >
> > Screaming for compromise, methinks...
> >
> > - - ferg
> >
> > -----BEGIN PGP SIGNATURE-----
> > Version: PGP Desktop 9.6.3 (Build 3017)
> >
> > wj8DBQFHTlAPq1pz9mNUZTMRAvr5AKCypH3Zj/tD15BYxVpW9DPSuZAPsQCglm+W
> > GhJOs4Pmdta52o/EaD2rm7s=
> > =22Vp
> > -----END PGP SIGNATURE-----
> >
> >
> >
> > --
> > "Fergie", a.k.a. Paul Ferguson
> >  Engineering Architecture for the Internet
> >  fergdawg(at)netzero.net
> >  ferg's tech blog: http://fergdawg.blogspot.com/
> >
> >
> > _______________________________________________
> > Fun and Misc security discussion for OT posts.
> > https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> > Note: funsec is a public and open mailing list.
> >
>
> _______________________________________________
> Fun and Misc security discussion for OT posts.
> https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
> Note: funsec is a public and open mailing list.
>


-- 
mike
http://lets.coozi.com.au/

More information about the funsec mailing list