On Fri, Oct 06, 2017 at 11:04:24PM +0200, Hendrik Leppkes wrote: > On Fri, Oct 6, 2017 at 10:21 PM, Michael Niedermayer > <mich...@niedermayer.cc> wrote: > > > > With this a filter graph can never be taken from an untrusted source > > > > > > The same could be said for any ffmpeg CLI command line string, which > people happily share on the web all the time, it can also contain > multiple output files which can get overwritten without question even > with the right commands.
sure but if we had the ability to use untrusted strings saftely as filtergraph then this would allow new use cases. An example would be filterng videos via a web app Another example would be a recommanded filter embeded in a web page or a video that by default might be applied during playback in the client. That may be a filter to do deblock / post processing or some telecine related correction. One could go further and apply this not to a video but a whole webpage insane, yes, and whole lot of compatibility questions but my point is not the details here, just that theres alot more than a user copy and pasting a trojanized command line > Should we remove support for writing those files as well? :) no features should be removed but having more parts of the interface work with untrusted data would allow new things neither of us is thinking of ... > > Ultimately, multimedia processing has to write files at some point. If > people copy-paste commands without understanding them or even worse > give people access to command lines without control, trhere is nothing > we can really do to protect them. > > - Hendrik > _______________________________________________ > ffmpeg-devel mailing list > ffmpeg-devel@ffmpeg.org > http://ffmpeg.org/mailman/listinfo/ffmpeg-devel -- Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB Good people do not need laws to tell them to act responsibly, while bad people will find a way around the laws. -- Plato
signature.asc
Description: Digital signature
_______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org http://ffmpeg.org/mailman/listinfo/ffmpeg-devel
