Christopher Lemmer Webber wrote on 1/30/19 3:59 PM:
Yes, the xexprs and SXML stuff is mostly very old (perhaps most of it from so
far back that Racket even had its own little Web browser),
This one? https://docs.racket-lang.org/browser/index.html
Yes, that looks like it. Regarding using it, of course you understand
the difference between modern CSS and DOM, and Mosaic-era (or early
Netscape Navigator) HTML, *and* you'd also want to sanity-check the
security of the implementation, since I don't recall that being looked
at in ages.
The two security things that come to mind to look at are the Racket eval
feature, and exactly how the browser overall was implemented (e.g., make
sure it doesn't use old crusty bits of C or C++ code, such as from an
old wxWidgets). Much lower-priority, you could also look at limiting
its resource consumption. Even if you control all content, injection
happens. (It could be that Racket's old Windows-like Help viewer is a
very rare old Web browser not littered with serious vulnerabilities, but
that's something to check.)
--
You received this message because you are subscribed to the Google Groups "Racket
Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to racket-users+unsubscr...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
