I recently uninstalled Google Desktop Search after watching a demo of an exploit. Although the particular case seems to be fixed it looks like the feature of mixing the local with web results opens the door to a whole family of similar exploits. Ideally I'd be able to just turn off the Desktop Link feature. Until then I'm looking for another solution.
Windows Desktop Search is shipped with Vista but is also available as a free download for earlier Windows. It comes with a set of filters and a plug-in for Outlook (which is presumably the result of this buyout.
There are also a number of third-party filters available.
Just waiting for the indexing service to complete it's first run, then hopefully I can find emails again...
It looks like WDS also had an XSS attack vulnerability: see advisory and patches.
Wednesday, 11 April 2007
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment