On Fri, 2016-11-25 at 01:46 +0100, Lars Seipel wrote: > What does that mean, exactly? Does it pass the downloaded file to > xdg-open or equivalent? "or equivalent" -- it uses Gio and not xdg-open > Just because you clicked on a link on some > website, no matter the file type and association involved? Seriously? Actually there is a list of "safe" MIME types in Epiphany, and the file is only opened if shared-mime-info thinks it's of a "safe" type. It *should* be hard to exploit shared-mime-info, so that's fine... but the safe list is pretty big and nobody has been maintaining it. Michael _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
