Of course I do those things. Sometimes. When I do I think carefully
about where I'm getting them from, look at the source, and run them for
a while under an account I keep for that purpose with no access to
anything (the reason why I believe that even single user machines need
multiuser security, but that's another argument). People actually do
this. I recall a discussion on this very list a few months ago about a
package who's installation script downloaded another script and
executed it without warning. People noticed.
If I were a using a browser that downloaded binary applets on a regular
basis, even that level of care would become unmanageable. Even
assuming that the browser warned me that it was happening.
--------
Sarr Blumson sarr@umich.edu
voice: +1 313 764 0253 FAX: +1 313 763 4434
CITI, University of Michigan http://www.citi.umich.edu:80/users/sarr
/
519 W William, Ann Arbor, MI 48103-4943