Flash Player team is doing some 'pre-communication' around the security changes
in the -next- version of Flash Player, releasing in April 2008.

So we're starting with some blog posts, articles and technotes so that these
changes can spread to the community. There will likely be more than this by
release time as well (and new communication will come at that time).

Blogs:
Emmy Huang:
[url]http://weblogs.macromedia.com/emmy/[/url]

Justin Everett-Church:
[url]http://justin.everett-church.com/[/url]


Developer Center articles:
"Preparing for the Flash Player 9 April 2008 Security Update" (

[url]http://www.adobe.com/devnet/flashplayer/articles/flash_player9_security_update.h[/url]
tml)

Everyone should read and become familiar with the current article on Flash
Player 9.0.115.0's 'phase 1' security changes.. this outlines a lot of what's
been changed, and gives you an idea what to think about for the upcoming April
release. "Security Changes in Flash Player 9" (v9.0.115.0) at
[url]http://www.adobe.com/devnet/flashplayer/articles/fplayer9_security.html[/url].

There are a few other articles with specifics about socketpolicyfile handling
coming up, but they?re not quite done yet..

Specific technotes w/ code:
?Changes in allowScriptAccess default (Flash Player)?
([url]http://www.adobe.com/go/kb403183[/url])

?Authorization header does not work for an HTTP request (Flash Player)?
([url]http://www.adobe.com/go/kb403184[/url])

?Arbitrary headers are not sent from Flash Player to a remote domain?
([url]http://www.adobe.com/go/kb403185[/url])

?Sockets do not function in Flash Player versions later than 9.0.115.0?
([url]http://www.adobe.com/go/kb403186[/url])

?javascript:" URLs no longer function in networking APIs (Flash Player)?
([url]http://www.adobe.com/go/kb403187[/url])[b technotes w/ code: