![]() ![]() Issue 1: "content-disposition: attachment" was created specifically and only to allow a server to specify "this file should be treated as an 'attachment' and only saved to the disk, not displayed inline" What would be a security problem is "fixing" bug 185618.īoris, are you actually against having this UI change in Firefox, or are bug 236541 comment 38 through 48 just about implementation details?įrom what I can tell reading through some of the backlog litany here, there are two issues concerning this bug: I don't see how fixing this would be a security problem. RFC 2183's wording only makes sense to me in the context of mail messages, not in the context of link clicks. That problem exists even without content-disposition: attachment and I don't think working around it is a major use case for content-disposition: attachment. Foxit pdf toolkit .torrent how to#The only problem would be remembering the action as "open with (deliberately unhelpful PDF reader application)" and then not figuring out how to undo that remembering. Even with his "deliberately unhelpful PDF reader application" use case, remembering the action as "download" wouldn't be a problem. ![]() As far as I know, web sites use "content-disposition: attachment" as a security measure to mean "don't treat this as a web page served from this server", not "make sure the user is prompted before the file is downloaded".īoris seems to be claiming otherwise in bug 285976, but I'm not convinced. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |