[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: lynx-dev Options, V.Links, random (was: patch 6 - UI Pages)
|
From: |
Leonid Pauzner |
|
Subject: |
Re: lynx-dev Options, V.Links, random (was: patch 6 - UI Pages) |
|
Date: |
Wed, 15 Dec 1999 17:48:21 +0300 (MSK) |
15-Dec-99 07:21 T.E.Dickey wrote:
>> Relying on rand() for security is really a bad design choice, IMO.
> otoh, it improved on what was there (addressed the immediate cause for
> concern). I don't believe that any of us can come up with a completely
> secure scheme (nor could the critics ;-). However, using a sequential name
There is one: new LYNXfoo:/ scheme done via HTStreamStack() -
no temp files at all.
(recent example - LYNXMESSAGES:/ though I am not sure we want
to expand LYNXfoo:/ namespace too much. Not a technical problem,
just our consensus.)
Anyway, exept forms Options Menu (and now Visited Links page also),
we have a plain html files without any POST content nor possibility
to explore something comparing against any
file://localhost/.../file.html
> opens us up to criticism from people who don't concern themselves over
> whether the underlying filesystems itself is secure. Using rand() merely
> guarantees that the average fool (i.e., "hacker") would not break in.
> --
> Thomas E. Dickey
> address@hidden
> http://www.clark.net/pub/dickey
- Re: lynx-dev Options, V.Links, random (was: patch 6 - UI Pages), T.E.Dickey, 1999/12/15
- Re: lynx-dev Options, V.Links, random (was: patch 6 - UI Pages), T.E.Dickey, 1999/12/15
- Re: lynx-dev Options, V.Links, random (was: patch 6 - UI Pages), T.E.Dickey, 1999/12/15
- Re: lynx-dev Options, V.Links, random (was: patch 6 - UI Pages), T.E.Dickey, 1999/12/15