GNOME Bugzilla – Bug 524522
Add lockdown key for disabling url-handlers
Last modified: 2008-05-07 10:41:39 UTC
AFAICT, currently, if we want to lock-down the desktop's handling of URLs we have to try to figure out all the possible keys to lockdown via /desktop/gnome/url-handlers/*. It would be useful to have a /desktop/gnome/lockdown/disable_url_handlers key that would disable them all. We'll need to add support to gvfs and gnome-vfs for this.
Created attachment 108078 [details] [review] patch
In bug #524526, Alex suggests calling this disable_application_handlers instead since it should probably also prevent a mime type handler launching as well. Will update patches...
Created attachment 108380 [details] [review] updated patch
So what's the right order here? If others are waiting for libgnome I'm fine with adding this as long as everyone agrees it makes sense :-) I think we have to branch first though?
Reopening. The patch has not yet been committed.
What is the purpose of application handling lockdown, i.e. in what operation environment is this required? How does it prevent users from calling the applications they may access from console, and running them with the desired URIs?
We need it on the login screen, where we don't want a not logged in user to run e.g. a web browser
Commited for real this time.