The Problem with Widgets

I'm not going to make an active link to this site, but I am going to tell you about it and then list the link, and if you really want to check it out, then you can copy and paste the address in your address bar. Here's the address:
http://stephan.com/widgets/zaptastic/

Now, if you jump over to that site, it automatically downloads a widget and it also automatically installs it if you are on Tiger, using Safari, and you haven't bothered to disable the "Open 'safe' files after downloading" feature.

So what? How's that a risk? Read more after the jump.

First things first: Before we do this go to Safari—>Preferences and under General uncheck the "Open 'safe' files after downloading" feature.

Now, go to zaptastic: a blueprint for a widget of mass destruction, notice that something suddenly downloads without you asking for it, and read the long horrible story of how widgets could all go horribly wrong and problematic for the Mac community, becoming, essentially spyware and annoyware for Macs. Doom and gloom. Doom and gloom!

Eh, just don't ever recheck that check box. And whatever you do, do not look at the goatse.cx widget. Do not look at the goatse; if you do not know what the goatse is and you are curious, then read up on it at Wikipedia.Never look at the goatse!

Thanks, Cap'n Hector for the tip!