As the one who posted the item on FileMaker 5's XML capabilities a
while back, I'm obliged to share the following as well...

--MIKE WIDENER, Archivist/Rare Books Librarian, Tarlton Law Library,
School of Law, University of Texas at Austin | 727 E. Dean Keeton
St., Austin, TX 78705-3224 | Phone 512/471-7263 | fax 512/471-0243 |
E-mail  [log in to unmask] | Web site
<http://www.law.utexas.edu/rare/rare.htm>



TidBITS#529/01-May-00
=====================

[...]

<http://www.tidbits.com/tb-issues/TidBITS-529.html>
<ftp://ftp.tidbits.com/issues/2000/TidBITS#529_01-May-00.etx>

Copyright 2000 TidBITS Electronic Publishing. All rights reserved.
    Information: <[log in to unmask]> Comments: <[log in to unmask]>
    ---------------------------------------------------------------

**FileMaker 5 Internet Security Holes** -- Blue World
   Communications has published a FileMaker 5 security alert
   outlining serious Internet security issues with FileMaker Pro 5
   and FileMaker Pro 5 Unlimited's XML publishing and email
   capabilities. Two exploits enable an interloper to acquire the
   entire contents of any Web-published database via email or as XML
   regardless of Web security settings; another enables anyone on the
   Internet to use FileMaker 5's email capabilities to send arbitrary
   email messages (a problem sure to delight spammers worldwide).
   These revelations come a week after FileMaker Inc. published
   documentation of FileMaker Pro 5's Web publishing capabilities in
   FileMaker Developer 5, although portions of FileMaker's XML
   capabilities have been documented on FileMaker's Web site for five
   weeks. As of this writing, FileMaker has not acknowledged any
   problems, and the only workarounds currently appear to be
   disabling FileMaker 5's Web Companion, reverting to FileMaker Pro
   4.x (which does not have these security issues, but cannot open
   FileMaker 5 databases), or using a middleware product like Blue
   World's Lasso as a gateway for incoming requests. [GD]

<http://www.blueworld.com/blueworld/news/05.01.00-FM5_Security.html>
<http://db.tidbits.com/getbits.acgi?tbart=05904>

[...]

$$

  Non-profit, non-commercial publications may reprint articles if
  full credit is given. Others please contact us. We don't guarantee
  accuracy of articles. Caveat lector. Publication, product, and
  company names may be registered trademarks of their companies.

  This file is formatted as setext. For more information send email
  to <[log in to unmask]>. A file will be returned shortly.

  For information: how to subscribe, where to find back issues,
  and more, email <[log in to unmask]>. TidBITS ISSN 1090-7017.
  Send comments and editorial submissions to: <[log in to unmask]>
  Back issues available at: <http://www.tidbits.com/tb-issues/>
  And: <ftp://ftp.tidbits.com/issues/>
  Full text searching available at: <http://www.tidbits.com/search/>
  -------------------------------------------------------------------