Slash Boxes
NOTE: use Perl; is on undef hiatus. You can read content, but you can't post it. More info will be forthcoming forthcomingly.

All the Perl that's Practical to Extract and Report

The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
More | Login | Reply
Loading... please wait.
  • by ct (2477) on 2003.01.09 11:28 (#15885) Homepage Journal
    I read that article, and clicked on Hammersley's FOAF link at the bottom and was scrolling through the list of names of his friends.

    There, for all the world to see, is the email addresses of most, if not all, of them.

    If Ben knew me, for example, and he put me in his FOAF, my email address would be right out there in the open, not only available to any spam crawler bot, but now it's there in an easy to parse xml format. It seems trivial to write a bot that would traverse a FOAF tree grabbing email addresses.

    I, personally, would solve this problem by creating a foaf@ email address and throwing some sort of email password system, requiring the subject to include a password in the Subject, but others don't have that ability.

    • This is a solved problem. Why Ben chose to use his real email address is really up to him, but several months ago it began to be possible to use a SHA1 hash of your mbox instead, and that's what most people do. The Foaf-a-matic will do that for you.


      -- Robin Berjon []