|
|
On Sun, 25 May 2008 15:46:35 +0100, Matthew Winn <o*@matthewwinn.me.urk>
wrote:
Better to simply pass the content type on the command line instead of
trying to encode it in some form. Every loss of information represents
a loss of security.
Yes but passing the MIME type isn't going to help with this problem. The
OS may select the right program/action, but if that program is designed to
choose the syntax highlighting scheme from the file extension of the file
it's opening then it's still going to open all your HTML, CSS and JS files
as plain black text. Command switches provide an override and I don't see
how what I suggested is a notable security risk. Viewing a HTML file with
CSS syntax highlighting isn't going to compromise your system.
|
|