Re: comment on vicinties vs URIs

Show/hide message thread

comment on vicinties vs URIs Per Bothner (02 Jan 2005 22:31 UTC)

Re: comment on vicinties vs URIs Aubrey Jaffer (10 Jan 2005 04:08 UTC)

Re: comment on vicinties vs URIs Per Bothner (10 Jan 2005 07:30 UTC)

Re: comment on vicinties vs URIs felix winkelmann (10 Jan 2005 07:52 UTC)

Re: comment on vicinties vs URIs Per Bothner (10 Jan 2005 08:10 UTC)

Re: comment on vicinties vs URIs felix winkelmann (10 Jan 2005 09:16 UTC)

Re: comment on vicinties vs URIs bear (10 Jan 2005 09:49 UTC)

Re: comment on vicinties vs URIs felix winkelmann 10 Jan 2005 09:16 UTC

On Mon, 10 Jan 2005 00:10:24 -0800, Per Bothner <xxxxxx@bothner.com> wrote:
> felix winkelmann wrote:
>
> > - It should be apparent that generalizing this all to URIs brings with it
> >   some security issues
>
> I don't see this.  I can see trouble if a Bad Guy gets an
> application to look for a resource using a bad URI.  But how is this
> different from getting an application to look for the resource using
> a bad local path?

The former looks like a much greater security risk to me.

cheers,
felix