[prev in list] [next in list] [prev in thread] [next in thread]
List: kmail-devel
Subject: Re: KMail and WINE integration - virus
From: Luis Pedro Coelho <luis_pedro () netcabo ! pt>
Date: 2002-10-24 15:57:54
[Download RAW message or body]
Em Quinta, 24 de Outubro de 2002 14:01, Daniel Naber escreveu:
> We show a dialog for *any* attachment.
Was this a design decision? I always thought it was "we don't have time to
implement an intelligent policy now and better safe than sorry."
I think kmail should not warn on every attachment open. Because it is annoying
to click on it just to open a JPEG or ZIP and if users must always click on
it, they will do it automatically even when it might matter (like in a
executable).
I think a possible general solution would be for .desktop files to have:
Exec=kword %U
Untrusted-Exec=kword --no-macros %U
or
X-KDE-Untrusted-Exec=kword --no-macros %U.
For programs like kuickshow, we could have Untrusted-Exec=Exec. If no
Untrusted-Exec was present, then kmail should show a warning.
If the user is used to just clicking, he will stop to loook at the warning.
Now, he will (or I know I do) just click "Open" without thinking too hard.
An intermediate solution would be to have a list of safe mime-types. Say, you
can open an image/jpeg without any problems. I'd say that this is the type I
open the most
What is nice in the Untrusted-Exec solution is that it can propagate. Let's
say I click on a ZIP file. This is a safe operation so I get ark immediatelly
with all the files in the zip. Then I click on an ms-word file inside the zip
and I get kword opening it *without* macros (I expect that by then, kword
would be able to open *with* macros, if it wanted to).
HTH,
--
Luis Pedro Coelho
http://blogs.salon.com/0001523
_______________________________________________
KMail Developers mailing list
kmail@mail.kde.org
http://mail.kde.org/mailman/listinfo/kmail
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic