After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 339553 - gnome_vfs_format_uri_for_display might expose password used
gnome_vfs_format_uri_for_display might expose password used
Status: RESOLVED NOTABUG
Product: gnome-vfsmm
Classification: Deprecated
Component: general
git master
Other Linux
: Normal normal
: ---
Assigned To: gtkmm-forge
gtkmm-forge
Depends on:
Blocks:
 
 
Reported: 2006-04-24 12:02 UTC by Daniel Holbach
Modified: 2011-01-16 23:36 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description Daniel Holbach 2006-04-24 12:02:44 UTC 
While Paolo fixed bug 338173 he identified that the use of
gnome_vfs_format_uri_for_display() can expose the password that is used to the
user. A quick grep on the gnome sources I had on the disk, I found that your
project uses it as well. I hope you can mark this bug NOTABUG and go on with
life. I just wanted to bring it to your attention.

Bug 339203 has been filed on gnome-vfs to remedy that in the future.
Comment 1 Murray Cumming 2006-04-26 17:20:58 UTC 
If it's deprecated in gnome-vfs then we can deprecate it in the C++ binding. Otherwise, I don't thinkt there's much for us to do.
Comment 2 Daniel Holbach 2006-04-26 18:00:32 UTC 
It's not exactly deprecated. It just might reveal information, if used "incorrectly". I just wanted to make sure you're aware of it. bakery uses gnome-vfsmm, which in turn is used by glom and prefixsuffix (of the top of my head). Feel free to close it, if you can't reproduce the issue or don't see how this could be improved in any way.
Comment 3 Murray Cumming 2006-06-19 08:11:55 UTC 
This doesn't seem to be relevant to gtkmm/gnomemm. We just wrap the API we are given.