Public bug reported:
Binary package hint: pessulus
Lockdown Editor has a feature for Epiphany which will disable "unsafe"
protocols. These protocols are not necessarily "unsafe" as they are user
editable, so even HTTPS which is deemed to be "safe" can be marked as an
"unsafe" protocol. To correctly state what this program allows the user
to do, it should be labeled as "disabled protocols".
The protocols in this list do not need to be valid (screenshot
attached), and pessulus will still accept them. Instead there should be
a better solution (pull down list, a series of check boxes) from which
from which the user can pick protocols, or otherwise offer
verification/validation for the protocols the user enters.
As well, if the user would only like (for example) HTTP to be the only
allowed protocol, the user would have to go through all other possible
protocols and mark them as disabled or "unsafe". This could be
simplified by making the list a whitelist (allow only these protocols)
or a blacklist (do not allow only these protocols) at the user's choice.
Version Information:
Ubuntu Hardy (2.6.24-19-generic)
pessulus 2.16.4-0ubuntu1
** Affects: pessulus (Ubuntu)
Importance: Undecided
Status: New
--
Lockdown Editor > Epiphany > "Disable unsafe protocols" requires validation
https://bugs.launchpad.net/bugs/263431
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs