On Fri, Feb 20, 2009 at 1:59 PM, Robert Rohde <[email protected]> wrote:
> On Fri, Feb 20, 2009 at 10:03 AM, David Gerard <[email protected]> wrote: > > 2009/2/20 Platonides <[email protected]>: > > > >> What we could do is to reject pdfs containing javascript. An unneeded > >> feature IMHO. It has been used more as attack vector than legitimately. > >> Do you know of a tool which could detect that? > >> I don't think pdfinfo provides that. > > > > > > Would pdf2ps -> ps2pdf do it? > > If such a round-trip would suppress this (and I have no idea), the > next question would be whether it would suppress or reduce in quality > any of the other content that we actually do care about. In general > such processes often have unintended consequences that make them > undesirable. > > -Robert Rohde > > _______________________________________________ > Wikitech-l mailing list > [email protected] > https://lists.wikimedia.org/mailman/listinfo/wikitech-l > Not to mention the processing overhead. How efficient is pdf2ps/ps2pdf? Are we going to slow down PDF upload/display by trying to sanitize it first? -Chad _______________________________________________ Wikitech-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikitech-l
