> If the applet were appropriately signed and certified, there would be
> no popup or warning to worry about.
Er... this has been stated a couple of times now, and it makes me wonder. I
haven't tried recently, but my impression was that an applet ALWAYS has to ask
before it gets out of the sandbox
On Mon, Nov 24, 2008 at 6:47 PM, Gregory Maxwell <[EMAIL PROTECTED]> wrote:
> You get no warning *at all* on non-origin network access for applets
> signed by an approved key. For example:
> http://www.jcraft.com/jorbis/player/JOrbisPlayer.php?play=http%3A%2F%2Fupload.wikimedia.org%2Fwikipedia%2Fco
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gregory Maxwell wrote:
> You get no warning *at all* on non-origin network access for applets
> signed by an approved key. For example:
> http://www.jcraft.com/jorbis/player/JOrbisPlayer.php?play=http%3A%2F%2Fupload.wikimedia.org%2Fwikipedia%2Fcommons%
On Mon, Nov 24, 2008 at 5:26 PM, Aryeh Gregor <[EMAIL PROTECTED]>
wrote:
> On Mon, Nov 24, 2008 at 2:31 PM, Brion Vibber <[EMAIL PROTECTED]> wrote:
>> Aryeh Gregor wrote:
>>> They wouldn't have to click through if it was signed, would they?
>>
>> Yes they would.
>>
>> If that wasn't the case, then
On Mon, Nov 24, 2008 at 2:31 PM, Brion Vibber <[EMAIL PROTECTED]> wrote:
> Aryeh Gregor wrote:
>> They wouldn't have to click through if it was signed, would they?
>
> Yes they would.
>
> If that wasn't the case, then any web site you visited could read all
> your files without notifying you simply
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ilmari Karonen wrote:
> Brion Vibber wrote:
>> Now that we've got uploads running on our new, beefier file servers,
>> I've experimentally bumped the upload limit from 20 to 100 megabytes.
>
> If we've got new beefy servers, another limit to at least
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Aryeh Gregor wrote:
> On Sun, Nov 23, 2008 at 3:18 PM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
>> That would requrie a signed applet, with users having to click through scary
>> warnings etc. not a good option.
>
> They wouldn't have to click throug
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Aryeh Gregor wrote:
> If the applet were appropriately signed and certified, there would be
> no popup or warning to worry about.
Loading a signed and certified applet pops up a dialog box that says
roughly:
"You are loading a Java applet which is si
On Mon, Nov 24, 2008 at 4:57 PM, Gregory Maxwell <[EMAIL PROTECTED]> wrote:
> On Mon, Nov 24, 2008 at 10:34 AM, Gerard Meijssen
> <[EMAIL PROTECTED]> wrote:
>> Hoi,
>> When you know what is being indicated by the signing part of a signed
>> message, it may not be scary. However, do you really expec
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Aryeh
Gregor
Sent: 24 November 2008 16:59
To: Wikimedia developers
Subject: Re: [Wikitech-l] Upload filesize limit bumped
...
>If the applet were appropriately signed and certified, there would be
>no
Aryeh Gregor wrote:
> On Mon, Nov 24, 2008 at 11:46 AM, Simon Orr wrote:
>> Excuse my ignorance here but shouldn't it be possible to write an Apache
>> handler to receive the file uploads (so we get instant notification
>> instead on upload completion) and at the same time use the meta data to
>> w
On Mon, Nov 24, 2008 at 11:46 AM, Simon Orr
<[EMAIL PROTECTED]> wrote:
> Excuse my ignorance here but shouldn't it be possible to write an Apache
> handler to receive the file uploads (so we get instant notification
> instead on upload completion) and at the same time use the meta data to
> write b
rge portion
of the world would assume Wikipedia is OK and just go with it.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Gregory
Maxwell
Sent: 24 November 2008 15:58
To: Wikimedia developers
Subject: Re: [Wikitech-l] Upload filesize limit bumped
On Mon,
On Mon, Nov 24, 2008 at 10:34 AM, Gerard Meijssen
<[EMAIL PROTECTED]> wrote:
> Hoi,
> When you know what is being indicated by the signing part of a signed
> message, it may not be scary. However, do you really expect everyone to know
> and appreciate it as such ?
I'm sorry, but I think we've misc
Hoi,
When you know what is being indicated by the signing part of a signed
message, it may not be scary. However, do you really expect everyone to know
and appreciate it as such ?
Thanks,
GerardM
2008/11/23 Gregory Maxwell <[EMAIL PROTECTED]>
> On Sun, Nov 23, 2008 at 3:18 PM, Daniel Kinzle
On Sun, Nov 23, 2008 at 3:18 PM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
> That would requrie a signed applet, with users having to click through scary
> warnings etc. not a good option.
They wouldn't have to click through if it was signed, would they?
They'd certainly have to click through a sc
On Sun, Nov 23, 2008 at 3:18 PM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
> That would requrie a signed applet, with users having to click through scary
> warnings etc. not a good option.
Signing and scary warnings are mutually exclusive.
In any case people don't care for the most part, sadly.
Aryeh Gregor schrieb:
> On Sun, Nov 23, 2008 at 8:43 AM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
>> A mediawiki upload should be specific and provide
>> more functionality besides picking multiple files and uploading them. Most
>> importantly, it has to provide a way to provide the basic informat
On Sun, Nov 23, 2008 at 4:37 PM, Aryeh Gregor
<[EMAIL PROTECTED]> wrote:
> On Sun, Nov 23, 2008 at 8:43 AM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
>> A mediawiki upload should be specific and provide
>> more functionality besides picking multiple files and uploading them. Most
>> importantly, it
On Sun, Nov 23, 2008 at 8:43 AM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
> A mediawiki upload should be specific and provide
> more functionality besides picking multiple files and uploading them. Most
> importantly, it has to provide a way to provide the basic information about
> license, source
Brianna Laugher schrieb:
> 2008/11/22 Daniel Kinzler <[EMAIL PROTECTED]>:
>> Anyway, HTTP doesn't support feedback during upload (or any feedback,
>> really),
>> and HTML does not offer a way for multi-file uploads (which would also be
>> quite
>> handy). Any solutions I have so far seen for that
> Forcing users to use an extension isn't great as a workaround for
> this, if we plan to work around it at all, since it will only affect
> the tiny minority of users who a) use Firefox and b) install the
> extension. If a Firefox extension is written, it would be most
> sensible to have it just
On Sat, Nov 22, 2008 at 7:32 PM, Brianna Laugher
<[EMAIL PROTECTED]> wrote:
> Isn't it OK if we have a Java/Flash option for those who can use it,
> and current Special:Upload for those who can't?
Yes, if you remove "/Flash" (we don't use Flash, it has no real
open-source implementations). That w
2008/11/22 Daniel Kinzler <[EMAIL PROTECTED]>:
> Anyway, HTTP doesn't support feedback during upload (or any feedback, really),
> and HTML does not offer a way for multi-file uploads (which would also be
> quite
> handy). Any solutions I have so far seen for that are based either on a Java
> Apple
On Fri, Nov 21, 2008 at 7:56 PM, Marco Schuster
<[EMAIL PROTECTED]> wrote:
> An improvement suggestion to the UI when uploading large files: display a
> progress bar like rapidshare.com does, so that user can see "ah, it's still
> uploading and didnt fail"
This is really something browsers should
thinking about it, at the moment the best solution for multi file upload is a
dedicated client. There are a couple of scripts that are hard to use, some
windows-only stuff, and java-based Commonist.
To get something that is easy to install and works cross-platform, how about a
firefox plugin? Has
Marco Schuster schrieb:
> On Sat, Nov 22, 2008 at 4:19 PM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
>>> Does a PHP script using upload stuff get run if the file upload is complete,
>>> or will it start while still uploading?
>>> If not, can't you figure out the temporary name of the upload on the
On Sat, Nov 22, 2008 at 4:19 PM, Daniel Kinzler <[EMAIL PROTECTED]> wrote:
>
> > Does a PHP script using upload stuff get run if the file upload is complete,
> > or will it start while still uploading?
> > If not, can't you figure out the temporary name of the upload on the server
> > and then run
Daniel Kinzler wrote:
> I mean uploading an arbitrary number of files, without having to pick each one
> individually. For example by picking a directory, or multiple files fron the
> same directory.
>
> Sure, HTML can give you 100 "choos file" fields. but who wants to use that?
>
> -- daniel
I
> Does a PHP script using upload stuff get run if the file upload is complete,
> or will it start while still uploading?
> If not, can't you figure out the temporary name of the upload on the server
> and then run ls -lh on it?
It gets run only after the upload is complete. And even if not, and yo
> Sorry? You can upload multiple files in the same HTTP POST. Just add
> several max_post_size). That can be done with javascript.
>
> Or do you mean uploading half file now and the other half on a second
> connection later?
I mean uploading an arbitrary number of files, without having to pick
On Sat, Nov 22, 2008 at 2:22 PM, Daniel Kinzler <[EMAIL PROTECTED]>wrote:
> > The usage of an unique upload ID ensures at their end that the
> progressbar
> > iframe always gets the right data. It refreshes using AJAX technology:
> > http://pastebin.com/f56b8c8f4
> > I'll take a look if this might
Daniel Kinzler wrote:
> Uh... that sounds like an elaborate, ugly and unreliable hack. And that is all
> it really can be. Keep in mind: PHP does not perform uploading at all. It does
> not run in the browser, so it can't upload anything. It's the browser itself
> that does this, based on what the
> The usage of an unique upload ID ensures at their end that the progressbar
> iframe always gets the right data. It refreshes using AJAX technology:
> http://pastebin.com/f56b8c8f4
> I'll take a look if this might be applicable to put into MW.
Yes, that seems similar to the original proposal: tra
On Sat, Nov 22, 2008 at 1:43 PM, Daniel Kinzler <[EMAIL PROTECTED]>wrote:
> Anyway, HTTP doesn't support feedback during upload (or any feedback,
> really),
> and HTML does not offer a way for multi-file uploads (which would also be
> quite
> handy). Any solutions I have so far seen for that are b
techman224 schrieb:
> It could work. I'm no PHP expert through.
>
> On 21-Nov-08, at 8:10 PM, Michael Dale wrote:
>
> I believe php 5.2 with some minor configuration supports upload
> status:
>
> http://www.haughin.com/2007/10/23/php-upload-progress-with-php-52-apc/
>
> --michael
Uh... that
Chad wrote:
> Reading a bit more into that, I'm not convinced it's practical. Almost all
> of the
> information I'm reading has been negative, just to quote a few:
I'd say it's a feature not easy to get running.
> [1]http://pecl.php.net/bugs/bug.php?id=13607
Obviously, it doesn't work on fastCGI.
On Sat, Nov 22, 2008 at 7:13 AM, Ilmari Karonen <[EMAIL PROTECTED]> wrote:
> Brion Vibber wrote:
>>
>> Now that we've got uploads running on our new, beefier file servers,
>> I've experimentally bumped the upload limit from 20 to 100 megabytes.
>
> If we've got new beefy servers, another limit to a
Brion Vibber wrote:
>
> Now that we've got uploads running on our new, beefier file servers,
> I've experimentally bumped the upload limit from 20 to 100 megabytes.
If we've got new beefy servers, another limit to at least consider
bumping might be the PNG scaling limit. 12.5 megapixels isn't r
On Fri, Nov 21, 2008 at 9:30 PM, techman224 <[EMAIL PROTECTED]> wrote:
> It could work. I'm no PHP expert through.
>
> On 21-Nov-08, at 8:10 PM, Michael Dale wrote:
>
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA1
> >
> > I believe php 5.2 with some minor configuration supports upload
> > s
It could work. I'm no PHP expert through.
On 21-Nov-08, at 8:10 PM, Michael Dale wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> I believe php 5.2 with some minor configuration supports upload
> status:
>
> http://www.haughin.com/2007/10/23/php-upload-progress-with-php-52-apc/
>
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I believe php 5.2 with some minor configuration supports upload status:
http://www.haughin.com/2007/10/23/php-upload-progress-with-php-52-apc/
- --michael
K. Peachey wrote:
> On Sat, Nov 22, 2008 at 10:56 AM, Marco Schuster
> <[EMAIL PROTECTED]> wro
On Sat, Nov 22, 2008 at 10:56 AM, Marco Schuster
<[EMAIL PROTECTED]> wrote:
>
> On Sat, Nov 22, 2008 at 1:49 AM, Brion Vibber <[EMAIL PROTECTED]> wrote:
>
> > -BEGIN PGP SIGNED MESSAGE-
> > Hash: SHA1
> >
> > Now that we've got uploads running on our new, beefier file servers,
> > I've expe
^_^ If only PHP didn't suck in that area...
If anyone has looked into that area, they'll understand that PHP cannot
do upload progress bars. PHP does the uploading on it's own without
giving the script any access to the raw file streams to permit that kind
of progress meter. The only way to cre
On Sat, Nov 22, 2008 at 1:49 AM, Brion Vibber <[EMAIL PROTECTED]> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Now that we've got uploads running on our new, beefier file servers,
> I've experimentally bumped the upload limit from 20 to 100 megabytes.
>
> Nice!
An improvement sugge
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Now that we've got uploads running on our new, beefier file servers,
I've experimentally bumped the upload limit from 20 to 100 megabytes.
Files nearing the high end of that range might not actually succeed,
though, as it'll be hitting post-size limit
46 matches
Mail list logo