https://wiki.whatwg.org/api.php?action=feedcontributions&feedformat=atom&user=RoberthahnWHATWG Wiki - User contributions [en]2026-04-30T08:04:22ZUser contributionsMediaWiki 1.39.3https://wiki.whatwg.org/index.php?title=Talk:Sanitization_rules&diff=2405Talk:Sanitization rules2007-08-10T12:55:23Z<p>Roberthahn: </p>
<hr />
<div>== Is the data URI scheme safe? ==<br />
<br />
* Rob Sayre says no and refers to a wikipedia article; however, I cannot see anything in the [http://en.wikipedia.org/wiki/Data:_URI_scheme article] that indicates the scheme is not safe.<br />
** Looking at that wikipedia page, <code>data</code> could only be added if it were followed by an asterisk, kinda like the 756* that I see popping up all over the place these days. In particular, I don't see the use case which would justify the investment in sanitizing <code>text/html</code> encoded as a data URI. Not that it would be difficult, just hard to justify. Perhaps a section could be added which lists safe content types when included in data URIs. -- [[User:Rubys|Rubys]] 03:48, 9 August 2007 (UTC)<br />
* Data URIs should be santizable on a per-MIME type basis. Until a vulnerability is found for text/plain mime types data URIs should be allowed, but other MIME types should be not allowed by default. Other, safer types could then be allowed via white list. -- [[User:Enricopulatzo|Enricopulatzo]] 16:49, 9 August 2007 (UTC)<br />
** The word "default" puzzles me here. The common use case here is small GIFs, JPEGs, and PNGs to be directly embedded in places like CSS and <img> tags. If the associated MIME-types were to be white listed, under what condition would they '''not''' be allowed through? -- [[User:Rubys|Rubys]] 10:30, 10 August 2007 (UTC)<br />
<br />
== Regarding the CSS <code>url()</code> ==<br />
<br />
As I understand the proposal, all <code>url()</code> properties are stripped or ignored. Why is this important? If it's to keep people from linking to malicious scripts only, then you've made it difficult for designers to link in background images.<br />
<br />
Could we not dereference the URI to determine if it's safe (ie: a valid image, not a script). "Safe" files are then stored on the server doing the sanitization, preventing users from swapping the innocent resource for a malicious one.<br />
<br />
--[[User:Roberthahn|Roberthahn]] 12:55, 10 August 2007 (UTC)</div>Roberthahn