W3C home > Mailing lists > Public > www-forms@w3.org > October 2003

XForms Security (Was: saving submitted XML locally)

From: <AndrewWatt2001@aol.com>
Date: Fri, 24 Oct 2003 03:38:49 EDT
Message-ID: <34.40e57c1f.2cca3109@aol.com>
To: tvraman@almaden.ibm.com
Cc: www-forms@w3.org, XForms@yahoogroups.com, bob.ducharme@lexisnexis.com
In a message dated 23/10/2003 21:56:35 GMT Daylight Time, tvraman@us.ibm.com 
writes:

> Use file:// URI to save it to local storage?
> 
> 
> >>>>>"DuCharme," == DuCharme, Bob (LNG-CHO) <bob.ducharme@lexisnexis.com> 
> writes:
>   DuCharme,> If I want to save the XML submitted by my XForm as
>   DuCharme,> a local disk file, I suppose I could run Tomcat
>   DuCharme,> and point submission/@action to a CGI running on
>   DuCharme,> http://localhost:8080/whatever, but I'm wondering
>   DuCharme,> if anyone knows a leaner way to do it.
>   DuCharme,> 
>   DuCharme,> thanks,
>   DuCharme,> 
>   DuCharme,> Bob
> 
> -- 
> Best Regards,
> --raman

TV,

What do you consider to be the security implications of the use of file:/// 
URLs in XForms?

Do you consider that adequate safeguards are in place to prevent any chance 
of malicious exploits?

Andrew Watt
Received on Friday, 24 October 2003 03:49:27 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Saturday, 10 March 2012 06:21:56 GMT