core-agent-linux

Qubes/core-agent-linux

Fork 0

Commit Graph

Author	SHA1	Message	Date
Marek Marczykowski-Górecki	9c839d789f	qubes-rpc: fix issues found by shellcheck Most of them are missing quotes, `` -> $(), and -o/-a usage in conditions. Also add few directives disabling checks where were too verbose.	2017-09-30 04:45:31 +02:00
Marek Marczykowski-Górecki	19921274e1	Implement qubes.OpenURL service instead of wrapping URLs in HTML This have many advantages: - prevent XSS (QubesOS/qubes-issues#1462) - use default browser instead of default HTML viewer - better qrexec policy control - easier to control where are opened files vs URLs For now allow only http(s):// and ftp:// addresses (especially prevent file://). But this list can be easily extended. QubesOS/qubes-issues#1462 Fixes QubesOS/qubes-issues#1487	2016-05-18 01:32:54 +02:00

Author

SHA1

Message

Date

Marek Marczykowski-Górecki

9c839d789f

qubes-rpc: fix issues found by shellcheck

Most of them are missing quotes, `` -> $(), and -o/-a usage in
conditions. Also add few directives disabling checks where were too
verbose.

2017-09-30 04:45:31 +02:00

Marek Marczykowski-Górecki

19921274e1

Implement qubes.OpenURL service instead of wrapping URLs in HTML

This have many advantages:
 - prevent XSS (QubesOS/qubes-issues#1462)
 - use default browser instead of default HTML viewer
 - better qrexec policy control
 - easier to control where are opened files vs URLs

For now allow only http(s):// and ftp:// addresses (especially prevent
file://). But this list can be easily extended.

QubesOS/qubes-issues#1462
Fixes QubesOS/qubes-issues#1487

2016-05-18 01:32:54 +02:00

2 Commits