Hacker News new | ask | show | jobs
by gruez 1913 days ago
>This suggests to me the author is giving advice based on paranoia rather than technical knowledge.

I noticed that immediately on the home page. The author suggests installing and running some sort of python package to verify the pdf is harmless. That sort of makes sense, until you realize that installing a random python package and running it is exposing you to far more risk than a opening a pdf ever will.
1 comments
mssundaram 1913 days ago
> exposing you to far more risk than a opening a pdf ever will

Have you looked into pdf vulnerabilities? I'd say they're about equal

link
gruez 1912 days ago
There are javascripts exploits as well. Do you never enable scripts? If you do enable scripts, do you vet the websites you enable scripts on as thoroughly as you random executables off the internet?
link
mssundaram 1912 days ago
Are we in disagreement here?
link