Nmap Development mailing list archives

Re: Path to nmap.xsl for win32

From: jah <jah () zadkiel plus com>
Date: Mon, 29 Sep 2008 21:01:54 +0100

On 29/09/2008 18:15, David Fifield wrote:

I committed something similar to your patch.

Very thorough!  Though the changelog entry doesn't reflect the work
you've done.

There's a feature of firefox 3 which affects the handling of file:///
resources alluded to in [1] which also describes how to change the
security.fileuri.strict_origin_policy preference to work around the
feature - possibly lowering security in the process.

Basically firefox will load file:///C:/Program Files/Nmap/nmap.xsl if
the xml output file is opened from
C:/ or
C:/Program Files or
C:/Program Files/Nmap or any subdirectory thereof.
If the xml output file is opened from anywhere else ( e.g. C:/Program
Files/foo/) firefox's error console reports:
Security Error: Content at file:///C:/Program%20Files/foo/test.xml may
not load data from file:///C:/Program%20Files/Nmap/nmap.xsl.

Hopefully this feature will be refined a little.

Regards,

jah

[1] http://kb.mozillazine.org/Security.fileuri.strict_origin_policy

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

Path to nmap.xsl for win32 jah (Sep 13)
- Re: Path to nmap.xsl for win32 David Fifield (Sep 23)
  - Re: Path to nmap.xsl for win32 jah (Sep 24)
    - Re: Path to nmap.xsl for win32 David Fifield (Sep 24)
    - Re: Path to nmap.xsl for win32 jah (Sep 24)
    - Re: Path to nmap.xsl for win32 David Fifield (Sep 24)
    - Re: Path to nmap.xsl for win32 jah (Sep 24)
    - Re: Path to nmap.xsl for win32 David Fifield (Sep 29)
    - Re: Path to nmap.xsl for win32 jah (Sep 29)
    - Re: Path to nmap.xsl for win32 David Fifield (Sep 29)
    - Re: Path to nmap.xsl for win32 jah (Sep 29)