From kmail-devel  Fri Aug 10 21:53:19 2001
From: Carsten Pfeiffer <carpdjih () cetus ! zrz ! tu-berlin ! de>
Date: Fri, 10 Aug 2001 21:53:19 +0000
To: kmail-devel
Subject: Re: KHTML API cleanup
X-MARC-Message: https://marc.info/?l=kmail-devel&m=99748043725634

On Freitag, 10. August 2001 12:50 Daniel Naber wrote:

> > - KMail seems to be the only application that uses
> >   setMetaRefreshEnabled(false). can you please explain what
> > security-issue this is supposed to fix or if it can be merged with
> >   setOnlyLocalReferences(true) ?

Wouldn't that be a nice DOS attack to send someone an html mail that 
constantly reloads some file?

I don't think it's a good idea to merge all those fine-grained options into 
one big setEnableSecurity( bool ). I'm sure there are very different needs 
for khtml and IMHO it's not a good idea to limit khtml's flexibility for no 
real gain.

Cheers
Carsten Pfeiffer
_______________________________________________
Kmail Developers mailing list
Kmail@master.kde.org
http://master.kde.org/mailman/listinfo/kmail