[Kolab-devel] thomas: server/file kolab-filemagic.patch, 1.3, NONE

Thomas Arendsen Hein thomas at intevation.de
Tue May 6 18:51:59 CEST 2008


* Bernhard Reiter <bernhard at intevation.de> [20080503 17:34]:
> On Friday 02 May 2008 12:01, cvs at kolab.org wrote:
> > Removed Files:
> >         kolab-filemagic.patch
> > Log Message:
> > Removed no longer needed kolab-filemagic.patch
> 
> Should this really be removed?

Yes!

> My first impulse is: No. As there are way to many false positives
> if the file command it used, even when amavisd-new does not fully use those
> false positive to do bad things.

amavisd-new does not only not fully use these possibly false
positives, but it ignores them completely!

> > The fix for kolab/issue1458 (Password protected .sxw files can be banned by
> > amavisd, as a result of the file command.) introduced this, but due to
> > changes in amavsid-new COM files are no longer considered executable:

It is not the job of Kolab/OpenPKG to make everyone happy with every
usage of 'file' (or other tools). Kolab's usages of 'file' are
safe(r) now. Of course the encrypted .od* files still could look
like something else, but the chances are even more reduced than with
the kolab-filemagic.patch

Thomas

-- 
thomas at intevation.de - http://intevation.de/~thomas/ - OpenPGP key: 0x5816791A
Intevation GmbH, Osnabrueck - Register: Amtsgericht Osnabrueck, HR B 18998
Geschaeftsfuehrer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://lists.kolab.org/pipermail/devel/attachments/20080506/52548aca/attachment.sig>


More information about the devel mailing list