[konsole] [Bug 367899] Please consider sanitizing middle-click-pasted text control characters for security reasons

Sami Liedes bugzilla_noreply at kde.org
Sun Feb 19 20:54:28 UTC 2017


https://bugs.kde.org/show_bug.cgi?id=367899

--- Comment #4 from Sami Liedes <sami.liedes at iki.fi> ---
You mean that instead of silently dropping control characters, Konsole would
open a popup window showing the entire pasted text with control characters
visible and ask if you want to paste it?

I guess that would kind of solve the security problem, though I note that the
text being pasted may be quite long for a popup (I don't know what the maximum
size is, but I think at least hundreds of thousands of bytes is possible), and
the malicious part could be hidden in the middle.

Do you think someone relies on being able to paste control characters? I guess
it's entirely possible.

-- 
You are receiving this mail because:
You are the assignee for the bug.


More information about the konsole-devel mailing list