[vlc-devel] [RFC] Option whitelisting policy
dionoea at videolan.org
Mon Sep 22 15:28:59 CEST 2008
On Mon, Sep 22, 2008, Laurent Aimar wrote:
> You should really post the list you propose to whitelist *before* commiting
> as some security issues could be hard to think of.
> Btw, are you sure you want to whitelist from all modules ? I would think that
> access and demux should be enought at least for a start.
Yeah, I'll send a first patch for something like:
Anything which configures the input should be whitelisted.
Anything else shouldn't.
More information about the vlc-devel