FileMaker 5 Internet Security Holes -- Blue World Communications has published a FileMaker 5 security alert outlining serious Internet security issues with FileMaker Pro 5 and FileMaker Pro 5 Unlimited's XML publishing and email capabilities. Two exploits enable an interloper to acquire the entire contents of any Web-published database via email or as XML regardless of Web security settings; another enables anyone on the Internet to use FileMaker 5's email capabilities to send arbitrary email messages (a problem sure to delight spammers worldwide). These revelations come a week after FileMaker Inc. published documentation of FileMaker Pro 5's Web publishing capabilities in FileMaker Developer 5, although portions of FileMaker's XML capabilities have been documented on FileMaker's Web site for five weeks. As of this writing, FileMaker has not acknowledged any problems, and the only workarounds currently appear to be disabling FileMaker 5's Web Companion, reverting to FileMaker Pro 4.x (which does not have these security issues, but cannot open FileMaker 5 databases), or using a middleware product like Blue World's Lasso as a gateway for incoming requests. [GD]
Add Slides to Pear Note from Other Applications
If you have some slides in any application, and you'd like to add them to a Pear Note document, there's no need to save them out and then import them into Pear Note. Instead, you can send them directly to Pear Note through a PDF service. For instance, if you had slides in Keynote, just:
- Select Print within Keynote.
- Click the PDF button.
- Select Send PDF to Pear Note.
This can also be used to import other document types into Pear Note to take notes on them as well.
Visit Useful Fruit Software
Other articles in the series FileMaker 5