'Re: This untrusted page ...'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kfm-devel
Subject:    Re: This untrusted page ...
From:       Maksim Orlovich <mo85 () cornell ! edu>
Date:       2012-06-18 17:19:48
Message-ID: CAOHCnGdo=6KPhGsOf+rWzxg3PZ-P-Nd=DEh-ijxXtrZh7mWSug () mail ! gmail ! com
[Download RAW message or body]

See KHTMLPart::checkLinkSecurity --- which is mostly defined in terms
of KAuthorized::authorizeUrlAction("redirect", pageURL, linkURL);


On 6/16/12, Martin Koller <kollix@aon.at> wrote:
> On Thursday, 14. June 2012 18:30:57 David Faure wrote:
>> On Friday 08 June 2012 08:09:09 Martin Koller wrote:
>> > Hi,
>> >
>> > I'm testing 4.9 beta1 and have the following problem:
>> > I open a webpage from the company intranet, which contains all email
>> > addresses from my colleagues.
>> > But when clicking on one of it, I get a security warning dialog with
>> > the
>> > text:
>> >
>> > This untrusted page links to
>> > mailto: some.name@some.domain.
>> > Do you want to follow the link?
>> >
>> > (using the page with opera or firefox does not give any such warning
>> > and
>> > opens kmail)
>> >
>> > Question: when does this warning appear ?
>> >
>> > It does not seem related to the content itself, as the html page saved
>> > locally and shown in konqueror does not give this warning.
>> >
>> > I would like to create a BKO entry but I don't know how to explain the
>> > problem so that it's reproducible.
>>
>> What does the HTML look like? Simple <a href="mailto:..."> or something
>> more
>> complex, involving javascript maybe?
>>
>> Did you try putting a testcase up on another http server (a public one),
>> to
>> avoid the fact that there's no such warning from a local file?
>
> I can reproduce the problem with the following simple html page when
> the page is served from a local running HTTP Server
> ( http://localhost:8080/data/test.html )
>
> <html>
> <body>
> <a href="mailto:test.test@test.at">test.test@test.at</a>
> </body>
> </html>
>
> when does konqueror think a page is untrusted ?
>
> --
> Best regards/Schöne Grüße
>
> Martin
> A: Because it breaks the logical sequence of discussion
> Q: Why is top posting bad?
>
> ()  ascii ribbon campaign - against html e-mail
> /\  www.asciiribbon.org   - against proprietary attachments
>
> Geschenkideen, Accessoires, Seifen, Kulinarisches: www.bibibest.at
>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic