From kmail-devel Thu Oct 24 15:57:54 2002 From: Luis Pedro Coelho Date: Thu, 24 Oct 2002 15:57:54 +0000 To: kmail-devel Subject: Re: KMail and WINE integration - virus X-MARC-Message: https://marc.info/?l=kmail-devel&m=103547522808072 Em Quinta, 24 de Outubro de 2002 14:01, Daniel Naber escreveu: > We show a dialog for *any* attachment. Was this a design decision? I always thought it was "we don't have time to implement an intelligent policy now and better safe than sorry." I think kmail should not warn on every attachment open. Because it is annoying to click on it just to open a JPEG or ZIP and if users must always click on it, they will do it automatically even when it might matter (like in a executable). I think a possible general solution would be for .desktop files to have: Exec=kword %U Untrusted-Exec=kword --no-macros %U or X-KDE-Untrusted-Exec=kword --no-macros %U. For programs like kuickshow, we could have Untrusted-Exec=Exec. If no Untrusted-Exec was present, then kmail should show a warning. If the user is used to just clicking, he will stop to loook at the warning. Now, he will (or I know I do) just click "Open" without thinking too hard. An intermediate solution would be to have a list of safe mime-types. Say, you can open an image/jpeg without any problems. I'd say that this is the type I open the most What is nice in the Untrusted-Exec solution is that it can propagate. Let's say I click on a ZIP file. This is a safe operation so I get ark immediatelly with all the files in the zip. Then I click on an ms-word file inside the zip and I get kword opening it *without* macros (I expect that by then, kword would be able to open *with* macros, if it wanted to). HTH, -- Luis Pedro Coelho http://blogs.salon.com/0001523 _______________________________________________ KMail Developers mailing list kmail@mail.kde.org http://mail.kde.org/mailman/listinfo/kmail