[vlc-devel] [LATTE] Privacy, what might that mean?
Pierre d'Herbemont
pdherbemont at free.fr
Tue May 12 20:33:43 CEST 2009
Small look at the code, this should not happen. Unless VLC ends up in
putting the file location in title/name/artist field (!).
Pierre.
2009/5/12 Rémi Denis-Courmont <rem at videolan.org>:
> Hello,
>
> I realized today that VLC sends complete media locations to search engines via
> the meta stuff. Sorry for the rudeness but...
> __ ___ _ _ _____ _____ _ _ _____ _____ _ _ ____ _ __
> \ \ / / | | | / \|_ _| |_ _| | | | ____| | ___| | | |/ ___| |/ /
> \ \ /\ / /| |_| | / _ \ | | | | | |_| | _| | |_ | | | | | | ' /
> \ V V / | _ |/ ___ \| | | | | _ | |___ | _| | |_| | |___| . \
> \_/\_/ |_| |_/_/ \_\_| |_| |_| |_|_____| |_| \___/ \____|_|\_\
>
> Do I need to remind someone that the piece of software known as VLC media
> player is a fun but _serious_ development project used by millions?
>
> Parsing all kind of harmful parameters from HTTP playlists was silly. Fetching
> software updates without any security checks was reckless (IIRC, Mozilla did
> the same mistake).
>
> But, come on! That beats everything. How can someone write code without even
> remotely THINKING about CONSEQUENCES? This is not a computer security problem,
> this is common sense.
>
> Needless to say, I am very pissed off, as one of many victimized users.
>
> --
> Rémi Denis-Courmont
> http://git.remlab.net/cgi-bin/gitweb.cgi?p=vlc-courmisch.git;a=summary
> _______________________________________________
> vlc-devel mailing list
> To unsubscribe or modify your subscription options:
> http://mailman.videolan.org/listinfo/vlc-devel
>
More information about the vlc-devel
mailing list