Re: security holes in gnome-vfs application list (was Call for file

From: Alan Cox <alan redhat com>
To: federico ximian com (Federico Mena Quintero)
Cc: alan redhat com (Alan Cox), gnome-hackers gnome org
Subject: Re: security holes in gnome-vfs application list (was Call for file
Date: Mon, 26 Feb 2001 12:56:56 -0500 (EST)

> This has nothing to do with gnome-vfs or its handling of MIME types.
> You have exactly the same problem with any application that opens
> files.  I am pretty sure some day someone will find a terrible bug in
> a GIMP plug-in and exploit it to rm -rf your home directory if your
> image has a particular byte sequence.
> 
> So let's be as paranoid as possible, but not any more paranoid than that.

Which means being sensibly minimalist about the automatic bindings we give
a user by default. Thats the point I was trying to make


_______________________________________________
gnome-hackers mailing list
gnome-hackers gnome org
http://mail.gnome.org/mailman/listinfo/gnome-hackers

References:
- Re: security holes in gnome-vfs application list (was Call for file
  - From: Federico Mena Quintero

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]