Re: [Evolution] Sending photos from digKam: "Skipping suspicious attachment"



On Mon, 2012-06-25 at 10:01 +0200, Milan Crha wrote:
does the file actually exist in that directory? 

Yes, both the path and the file are valid.

thus it seems like either a bug in evolution with the error printing or
your plugin duplicates a prefix of the file in the path, because the
two parts are exactly the same

The duplicated path is probably a bug Ãn the SendImages plugin for
digiKam. I'll have a look and file it if not done already.

Anyway, reading the code in 3.2.3, the attachment is considered
suspicious if any of its path parts (like "home", "snobel", ".cache")
has one of the prefixes ".", "etc" or "..". I do not see there any
checking for XDG. The 3.4.x has there the final checking for XDG
prefixes, to whitelist blacklisted files.

Thanks, that explains it.

if I read the code properly, then there is submitted an alert about
suspicious attachment, but the file is attached anyway, in 3.4.x+, thus
this works way differently in current stable than in 3.2.3.

The 3.4.x behaviour is very reasonable, but it would be nice if there
were some way to explicitly whitelist additional directories.

Jacob Nielsen





[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]