Bug#397945: marked as done (Javascript code misidentified as C code)

Wed, 13 Feb 2008 13:14:42 -0800 

Your message dated Wed, 13 Feb 2008 21:02:56 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#397945: fixed in shared-mime-info 0.23-2
has caused the Debian Bug report #397945,
regarding Javascript code misidentified as C code
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [EMAIL PROTECTED]
immediately.)


-- 
397945: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=397945
Debian Bug Tracking System
Contact [EMAIL PROTECTED] with problems
--- Begin Message --- 
Package: nautilus
Version: 2.14.3-3
Severity: normal

Routinely I get dialogs that read along the lines of:

    Cannot open FOO.js

    The filename "FOO.js" indicates that this file is of type
    "JavaScript program". The contents of the file indicate that the
    file is of type "C source code". If you open this file, the file
    might present a security risk to your system.

    Do not open the file unless you created the file yourself, or
    received the file from a trusted source. To open the file,
    rename the file to the correct extension for "C source code",
    then open the file normally. Alternatively, use the Open With
    menu to choose a specific application for the file.

This is not the most absurd one I've gotten. Once it decided that a WAV
file — that's right, a binary file — is plain text! And then refused to
play it...

1. This file doesn't look like C code, at least not any more than any
   other JavaScript code. Currently, it is available on the web at 
   <http://asurvey.net/ccsfagent/media/survey.js>.

2. It might present a security risk to the system about as much as, say,
   a meteor. A meteor could hit the system. A C file named FOO.js is
   probably no more likely to present a security risk when passed to
   gvim.

3. The suggestion to rename it is, of course, silly because it's been
   misidentified.
   
4. The suggestion to use Open With is silly because you have to do that
   each and every time; there is no way to say "no, you idiotic
   nautilus, you're wrong, it's a damned javascript file, shut up."

I've searched preferences, I've searched gtweakui-nautilus, I've
searched gconf: There appears to be no way to turn off this. Please,
please fix it...

-- System Information:
Debian Release: 4.0
  APT prefers testing
  APT policy: (500, 'testing')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-1-686
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)

Versions of packages nautilus depends on:
ii  desktop-file-utils         0.11-1        Utilities for .desktop files
ii  gnome-control-center       1:2.14.2-3+b1 utilities to configure the GNOME d
ii  libart-2.0-2               2.3.17-1      Library of functions for 2D graphi
ii  libatk1.0-0                1.12.3-1      The ATK accessibility toolkit
ii  libbonobo2-0               2.14.0-2      Bonobo CORBA interfaces library
ii  libc6                      2.3.6.ds1-7   GNU C Library: Shared libraries
ii  libeel2-2                  2.14.3-1      Eazel Extensions Library (for GNOM
ii  libesd-alsa0 [libesd0]     0.2.36-3      Enlightened Sound Daemon (ALSA) - 
ii  libexif12                  0.6.13-4      library to parse EXIF files
ii  libgail-common             1.8.11-3      GNOME Accessibility Implementation
ii  libgail17                  1.8.11-3      GNOME Accessibility Implementation
ii  libgconf2-4                2.16.0-2      GNOME configuration database syste
ii  libglade2-0                1:2.6.0-2     library to load .glade files at ru
ii  libglib2.0-0               2.12.4-1      The GLib library of C routines
ii  libgnome-desktop-2         2.14.3-1      Utility library for loading .deskt
ii  libgnome2-0                2.16.0-2      The GNOME 2 library - runtime file
ii  libgnomecanvas2-0          2.14.0-2      A powerful object-oriented display
ii  libgnomeui-0               2.14.1-2      The GNOME 2 libraries (User Interf
ii  libgnomevfs2-0             2.14.2-2+b1   GNOME virtual file-system (runtime
ii  libgtk2.0-0                2.8.20-3      The GTK+ graphical user interface 
ii  libnautilus-extension1     2.14.3-3      libraries for nautilus components 
ii  liborbit2                  1:2.14.3-0.1  libraries for ORBit2 - a CORBA ORB
ii  libpango1.0-0              1.14.7-1      Layout and rendering of internatio
ii  libpopt0                   1.10-3        lib for parsing cmdline parameters
ii  librsvg2-2                 2.14.4-2      SAX-based renderer library for SVG
ii  libstartup-notification0   0.8-2         library for program launch feedbac
ii  libx11-6                   2:1.0.3-2     X11 client-side library
ii  libxml2                    2.6.27.dfsg-1 GNOME XML library
ii  nautilus-data              2.14.3-3      data files for nautilus
ii  shared-mime-info           0.19-1        FreeDesktop.org shared MIME databa

Versions of packages nautilus recommends:
ii  desktop-base                 0.3.17      common files for the Debian Deskto
ii  eject                        2.1.4-2.1   ejects CDs and operates CD-Changer
ii  fam                          2.7.0-11    File Alteration Monitor
ii  libgnomevfs2-extra           2.14.2-2+b1 GNOME virtual file-system (extra m
ii  librsvg2-common              2.14.4-2    SAX-based renderer library for SVG
ii  nautilus-cd-burner           2.14.3-2    CD Burning front-end for Nautilus

-- no debconf information

--- End Message ---
--- Begin Message --- 
Source: shared-mime-info
Source-Version: 0.23-2

We believe that the bug you reported is fixed in the latest version of
shared-mime-info, which is due to be installed in the Debian FTP archive:

shared-mime-info_0.23-2.diff.gz
  to pool/main/s/shared-mime-info/shared-mime-info_0.23-2.diff.gz
shared-mime-info_0.23-2.dsc
  to pool/main/s/shared-mime-info/shared-mime-info_0.23-2.dsc
shared-mime-info_0.23-2_amd64.deb
  to pool/main/s/shared-mime-info/shared-mime-info_0.23-2_amd64.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Filip Van Raemdonck <[EMAIL PROTECTED]> (supplier of updated shared-mime-info 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Wed, 13 Feb 2008 18:28:20 +0100
Source: shared-mime-info
Binary: shared-mime-info
Architecture: source amd64
Version: 0.23-2
Distribution: unstable
Urgency: low
Maintainer: Filip Van Raemdonck <[EMAIL PROTECTED]>
Changed-By: Filip Van Raemdonck <[EMAIL PROTECTED]>
Description: 
 shared-mime-info - FreeDesktop.org shared MIME database and spec
Closes: 397945
Changes: 
 shared-mime-info (0.23-2) unstable; urgency=low
 .
   * Apply patch from freedesktop bugzilla for correct javascript detection.
     (Closes: #397945)
Files: 
 53d66aed7ef5d524a0e45927b344bd06 861 misc optional shared-mime-info_0.23-2.dsc
 947f8120d714ce2ee3bcd395100aa876 7986 misc optional 
shared-mime-info_0.23-2.diff.gz
 58d46f9a6160e0633146aa9a67544f2d 592604 misc optional 
shared-mime-info_0.23-2_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHs1hWEjn3CY6VDgARAtYrAKCq4wuQYaLsx7sCMBH/sZzlo/MWkACcDbMY
y+EiyZzLXqpLExFN+BHeBds=
=pWv6
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to