[Esa-l]IMPSEC works - or does it.

Karl Dunn Karl.Dunn at vmic.com
Fri May 18 07:13:52 PDT 2001 

I have a Solaris 2.7 SPARC box on which I run StarOffice.  It not only
doesn't do macros, but if you save a document that had them, they appear
to get stripped out (the sanitizer doesn't find them any more).

StarOffice has a version for LoseDoze.  I haven't tried it, but I'll bet
it behaves the same way.

Just a suggestion; I'm not an advocate here.

Karl Dunn     (KLD13)
VMIC
12090 South Memorial Parkway
Huntsville AL USA 35803
VOICE: (256) 382-8211 or (800) 322-3616
FAX:   (256) 650-5472 or (256) 882-0859

On Fri, 18 May 2001, John D. Hardin wrote:

> On Fri, 18 May 2001, Howard Lowndes wrote:
>
> > I assume that php used file magic to determine what the file type
> > was and was able to display the spreadsheet because it clearly did
> > not use the file name extension and the MIME type was
> > application/octet-stream.
>
> Running on a *nix box, that's a safe assumption.
>
> > What concerns me is whether any macros would have been executable
> > had they been embedded.
>
> Did it just render the spreadsheet, or did Excel actually get started
> on the client's computer (perhaps embedded in their browser)? If the
> latter, then yes, macros probably would get executed.
>
> In this case there's little the sanitizer could do.
>
> Does anybody know of a strip-VBA-from-MS-Office-Documents perl module?
>
> --
>  John Hardin KA7OHZ   ICQ#15735746   http://www.wolfenet.com/~jhardin/
>  jhardin at wolfenet.com      pgpk -a finger://gonzo.wolfenet.com/jhardin
>   768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76
>  1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
> -----------------------------------------------------------------------
>   An entitlement beneficiary is a person or special interest group
>   who didn't earn your money, but demands the right to take your
>   money because they *want* it.
>                                   -- John McKay, _The Welfare State:
>                                      No Mercy for the Middle Class_
> -----------------------------------------------------------------------
>    1264 days until the Presidential Election
> _______________________________________________
> E-mail Security Announce list mailing list
> E-mail Security Announce list at spconnect.com
> http://www.spconnect.com/mailman/listinfo/esa-l

More information about the esd-l mailing list