[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [draft-freed-sieve-in-xml-02] Escaping "*/" In Structured Comments

To: Robert Burrell Donkin <robertburrelldonkin@xxxxxxxxx>
Subject: Re: [draft-freed-sieve-in-xml-02] Escaping "*/" In Structured Comments
From: Philip Guenther <guenther+mtafilters@xxxxxxxxxxxx>
Date: Fri, 30 Jan 2009 11:09:14 -0800
Cc: MTA filtering mailing list <ietf-mta-filters@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=simple/simple; d=sendmail.com; s=ladle.dkim; t=1233342762; bh=3+wtNDIiHKpYLy5AnYidJB22xSvJtVnCEzlw ui6iz1Y=; h=Received:X-DKIM:DKIM-Signature:Date:From:X-X-Sender:To: cc:Subject:In-Reply-To:Message-ID:References:User-Agent: MIME-Version:Content-Type:X-MM-Ex-RefId; b=YmaZr9z3UOVOxkKtm0GT8yi Evnpm00j5bt8yjKAVuXi2X0/BxxcTxshktV0rYaJiORWPLrpx6ojGmKhTTkkNK+ZmRi ds1CcYCc78vKXG7BcODDfi2vdVEMIOipU3RHQDK9K2+5oK7SqSeL7Lr++tgu/4CX+r5 VMun+Vmsjk0SWg=
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=sendmail.com; s=spork.dkim; t=1233342556; bh=3+wtNDIiHKpYLy5AnYidJB22xSvJtVnCEzlw ui6iz1Y=; h=Date:From:To:cc:Subject:In-Reply-To:Message-ID: References:MIME-Version:Content-Type; b=ZcnPPW0OI+VfNmaBFkLcFKpBSZ vir7RnBYo9a0Sr95NtTKEoXYOW1jiPJ7A1ZfShtpTA/zDVsf9wVB8wbAAhjHE9B7BQI csAgFuq5TDdYR6mOqEVuhrCq0aUaaPwFbTvhkL6bdvoZYrDHQx4Cjvyq9aDxitIp65t wqanutDO8o0=
In-reply-to: <f470f68e0901300913o76065b2dr1d5ec17c61039d11@xxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-mta-filters/mail-archive/>
List-id: <ietf-mta-filters.imc.org>
List-unsubscribe: <mailto:ietf-mta-filters-request@imc.org?body=unsubscribe>
References: <f470f68e0901300913o76065b2dr1d5ec17c61039d11@xxxxxxxxxxxxxx>
Sender: owner-ietf-mta-filters@xxxxxxxxxxxx
User-agent: Alpine 2.00 (BSO 1167 2008-08-23)

On Fri, 30 Jan 2009, Robert Burrell Donkin wrote:
...
> Proposal
> --------
> To "4.2. Structured Comments" Add:
> 
>  If "*/" is found in the XML content, when mapped into a comment it
>  would prematurely terminate that comment. Escaping of this sequence
>  would often be inconvenient for processors. Editors SHALL NOT include
>  "*/" within displayblock, displaydata or foreign markup. Processors MAY
>  regard documents containing "*/" in foreign markup, displayblock
>  or displaydata as invalid.

Ick.  Wouldn't it be better to tell processors to generate '#' style 
comments instead of /*...*/ style comments, at least in that case?


> To "5. Security Considerations" Add:
> 
>  Little effective protection can be offered by a processor to the user
>  of a malicious editor.

How is this specific to sieve-in-xml and not just a general consideration 
for anyone using any editor for any purpose?


Philip Guenther

Follow-Ups:
- Re: [draft-freed-sieve-in-xml-02] Escaping "*/" In Structured Comments
  - From: Robert Burrell Donkin

References:
- [draft-freed-sieve-in-xml-02] Escaping "*/" In Structured Comments
  - From: Robert Burrell Donkin

Prev by Date: Re: [draft-freed-sieve-in-xml-02] Emphasis Whitespace Preservation
Next by Date: Re: [draft-freed-sieve-in-xml-02] Emphasis Whitespace Preservation
Previous by thread: [draft-freed-sieve-in-xml-02] Escaping "*/" In Structured Comments
Next by thread: Re: [draft-freed-sieve-in-xml-02] Escaping "*/" In Structured Comments
Index(es):
- Date
- Thread