[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Cite for print-to-postscript exploit in Mozilla?

[Snipping practically all of the cross-post distribution.]

Quoting Kevin B. McCarty (kmccarty@princeton.edu):

> But is there any way in which Mozilla's print-to-postscript is _less_
> safe than using gv to open up a random PostScript file found somewhere
> on the Internet?

Thus the -dSAFER option, which you should look up post-haste, if you
weren't aware of it.  Fortunately, utilities that use the ghostscript
utilities for not-necessarily-trustworthy files tend to be written by
people who _are_ aware of it.

    -dSAFER
    Disables the "deletefile" and "renamefile" operators and
    the ability to open files in any mode other than read-only. 
    This is desirable for spoolers or any other environments where a
    malicious or badly written PostScript program must be
    prevented from changing important files.

On a related note, does anyone know if xpdf takes (or can be made to
take) the same sort of precautions?  After all, a PDF is basically just
a PS file, so I imagine the same sorts of attack are possible.

A run through the manpage was unenlightening.

(Ah, I see Kevin has the same concern.)

-- 
Cheers,
Rick Moen                                        This space for rant.
rick@linuxmafia.com
Reply to: