Re: gopher2html, a possible way to browse the gopherspace via w3m

To: gopher-project@other.debian.org
Subject: Re: gopher2html, a possible way to browse the gopherspace via w3m
From: Leonardo Taccari <iamleot@gmail.com>
Date: Wed, 24 Jan 2018 10:14:40 +0100
Message-id: <[🔎] 5a684e8f.c55d1c0a.dec48.4502@mx.google.com>
In-reply-to: <[🔎] 20180123234829.GA23946@ren.laptop>
References: <[🔎] 5a66fb00.2587df0a.2016c.6823@mx.google.com> <[🔎] 20180123234829.GA23946@ren.laptop>

Hello Hiltjo,

Hiltjo Posthuma writes:
> There is an issue in:
>
> 	type == TYPE["html"] {
> 		url = substr(selector, 5)	# strip `URL:' prefix
> 		printf("<a href='%s'>%s</a>\n", url, encode(user_name))
> 	}
>
> 	the url should be escaped too, it can be a security issue.
> 	same in "picture" and urlize().
>
> The encode() function should escape " (to &quot;) and ' (to &#39;).

I have modified encode() to escape `"' and `'', urlize() to always
encode() the URL returned and all the printf()s in actions accordingly.

Thank you very much for reporting and suggesting that!

Reply to:

Follow-Ups:
- Re: gopher2html, a possible way to browse the gopherspace via w3m
  - From: Philipp Schafft <lion@lion.leolix.org>

References:
- gopher2html, a possible way to browse the gopherspace via w3m
  - From: Leonardo Taccari <iamleot@gmail.com>
- Re: gopher2html, a possible way to browse the gopherspace via w3m
  - From: Hiltjo Posthuma <hiltjo@codemadness.org>

Prev by Date: Re: gopher2html, a possible way to browse the gopherspace via w3m
Next by Date: Re: gopher2html, a possible way to browse the gopherspace via w3m
Previous by thread: Re: gopher2html, a possible way to browse the gopherspace via w3m
Next by thread: Re: gopher2html, a possible way to browse the gopherspace via w3m
Index(es):
- Date
- Thread