Are there any objections?
Thanks! _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
We currently support URLs such as
<jar:http://mxr.mozilla.org/mozilla-central/source/modules/libjar/test/mochitest/bug403331.zip?raw=1&ctype=application/java-archive!/test.html>.
This is a Firefox specific feature that no other engine implements,
and it increases our attack surface unnecessarily. As such, I would
like to put it behind a pref and disable it for Web content by default.
- Intent to unship: jar: URIs from content Ehsan Akhgari
- Re: Intent to unship: jar: URIs from content Aaron Klotz
- Re: Intent to unship: jar: URIs from content Bobby Holley
- Re: Intent to unship: jar: URIs from content Ehsan Akhgari
- Re: Intent to unship: jar: URIs from content Jason Duell
- Re: Intent to unship: jar: URIs from content Nicholas Alexander
- Re: Intent to unship: jar: URIs from content Robert O'Callahan
- Re: Intent to unship: jar: URIs from conte... Ehsan Akhgari
- Re: Intent to unship: jar: URIs from conte... Gregory Szorc
- Re: Intent to unship: jar: URIs from c... Robert O'Callahan
- Re: Intent to unship: jar: URIs f... Ben Kelly
