[haiku-bugs] Re: [Haiku] #7190: webpositive security issue non prompted file downloads

  • From: "stargatefan" <trac@xxxxxxxxxxxx>
  • Date: Fri, 04 Feb 2011 15:43:06 -0000

#7190: webpositive security issue non prompted file downloads
---------------------------------------+--------------------------
  Reporter:  stargatefan               |        Owner:  leavengood
      Type:  enhancement               |       Status:  new
  Priority:  normal                    |    Milestone:  R1
 Component:  Applications/WebPositive  |      Version:  R1/alpha2
Resolution:                            |     Keywords:
Blocked By:                            |  Has a Patch:  0
  Platform:  All                       |     Blocking:
---------------------------------------+--------------------------

Comment (by stargatefan):

 Replying to [comment:1 axeld]:
 > Unless attributes are resurrected (which isn't possible), downloading a
 file can never be a security issue. Only what you do with such a file can
 become one.
 >
 > I haven't tested it, but in most cases, WebPositive should always just
 download files without asking again (after you clicked on that link).


     actually I have seen a bunch of non user intiated file downloads,
 things like pop.swf and other stuff. In fact yesterday I watched the
 webpositive allow for a unprompted download of a known windows scareware
 program.

    I don't worry to much becuase there isn't much out there that could
 infect haiku or beos thanx to the small user base, but someday it could be
 a problem.

-- 
Ticket URL: <http://dev.haiku-os.org/ticket/7190#comment:2>
Haiku <http://dev.haiku-os.org>
Haiku - the operating system.

Other related posts: