W3C home > Mailing lists > Public > www-style@w3.org > August 2006

RE: Web Fonts

From: Ian Hickson <ian@hixie.ch>
Date: Thu, 24 Aug 2006 10:45:39 +0000 (UTC)
To: "Paul Nelson (ATC)" <paulnel@winse.microsoft.com>
Cc: www-style@w3.org
Message-ID: <Pine.LNX.4.62.0608241043450.10139@dhalsim.dreamhost.com>

On Thu, 24 Aug 2006, Paul Nelson (ATC) wrote:
>
> Digging into a compressed file to get one or more of fonts is a security 
> issue that should be avoided.

Could you expand on this? Since Mozilla's entire application deployment, 
user interface, internationalisation, and plugin infrastructure is based 
on digging into compressed files, it would be most helpful to know what 
security issues arise from such designs.

Thanks,
-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'
Received on Thursday, 24 August 2006 10:45:45 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Monday, 27 April 2009 13:54:46 GMT