Re: Security: Be careful with StarDict!

To: debian-user@lists.debian.org
Subject: Re: Security: Be careful with StarDict!
From: Vincent Lefevre <vincent@vinc17.net>
Date: Wed, 6 Aug 2025 14:06:56 +0200
Message-id: <[🔎] 20250806120656.GA3631@cventin.lip.ens-lyon.fr>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20250806112913.gsx7oiuoulqxqwqt@randomstring.org>
References: <[🔎] 20250804082130.GB932180@qaa.vinc17.org> <[🔎] e496c66cf62baac555d34a5635a9bfd8f33fc211.camel@debian.org> <[🔎] 106rr3r$rne$1@ciao.gmane.io> <[🔎] 20250805110931.GR28766@wooledge.org> <[🔎] 106uetb$f6b$1@ciao.gmane.io> <[🔎] 20250806112913.gsx7oiuoulqxqwqt@randomstring.org>

On 2025-08-06 07:29:13 -0400, Dan Ritter wrote:
> I also note that the Description for stardict does not mention
> that it is primarily a client for remote servers. Compare the
> Description for "dict":
> 
> Description: dictionary client
>  This package provides a client application to query a dictd server.
>  The client-server protocol is TCP-based; the server may then be local or
>  accessed through the network.
>  .
>  The DICT Development Group maintains several public servers which can
>  be accessed from any machine connected to the Internet.  The default
>  configuration is to query one of these servers first. This may be
>  changed in the configuration file /etc/dictd/dict.conf.
>  .
> 
> 
> That's an informative description. 

Yes, and also in the dict(1) man page. And another very important
difference is that to do a dict query, the user needs to do this
explicitly. On the opposite, stardict scans selections from other
applications and do the associated query without asking the user
first.

-- 
Vincent Lefèvre <vincent@vinc17.net> - Web: <https://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <https://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / Pascaline project (LIP, ENS-Lyon)

Reply to:

References:
- Re: Security: Be careful with StarDict!
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: Security: Be careful with StarDict!
  - From: Maytham Alsudany <maytham@debian.org>
- Re: Security: Be careful with StarDict!
  - From: Max Nikulin <manikulin@gmail.com>
- Re: Security: Be careful with StarDict!
  - From: Greg Wooledge <greg@wooledge.org>
- Re: Security: Be careful with StarDict!
  - From: Max Nikulin <manikulin@gmail.com>
- Re: Security: Be careful with StarDict!
  - From: Dan Ritter <dsr@randomstring.org>

Prev by Date: Re: Installer suggestions
Next by Date: Votre distributeur automatique livré, installé, approvisionné
Previous by thread: Re: Security: Be careful with StarDict!
Next by thread: Re: Security: Be careful with StarDict!
Index(es):
- Date
- Thread