Policy for opening url links in documents

Pavel Sanda sanda at lyx.org
Thu Aug 17 16:34:09 UTC 2023


On Thu, Aug 17, 2023 at 05:32:37PM +0200, Jürgen Spitzmüller wrote:
> Am Donnerstag, dem 17.08.2023 um 17:27 +0200 schrieb Jürgen
> Spitzmüller:
> > I think it is useful to see the URL/target and then decide. If I get
> > a document from someone else and the proposed link looks suspicious,
> > I'd rather not open it. Other links might look trustworthy and I can
> > proceed for those.
> 
> Pretty common usecase: people download illegal copies, often without
> being aware of the legal problem, from suspicious servers, and might
> add links to their bib file (or Zotero does it?). I don't want my
> browser being directed to such sites.
> 
> This can happen with people you generally "trust".

I see your point and do not have problem with presenting URL in the
dialog as you proposed.

My point was that I would add "trust of the source of the document" 
in the equation as well (in whatever wording).
Eye-inspection of URL can be easily befooled if the document comes
from an attacker.

Pavel


More information about the lyx-devel mailing list