[Aldor-l] Aldor Wiki

[Bill Page]

On March 5, 2007 4:27 PM Laurentiu Dragan wrote:
> ...
> Bill Page wrote: 
> > Does current policy also disable file uploads? When I try
> > this I get the message:
> > 
> >   Uploads disabled
> > 
> >   File uploads are disabled on this wiki. 
> > 
> > I think uploading files might be very useful for discussing
> > example code and proposing patches etc.
> 
> Due to security reasons file upload is disabled by default.

What security issues do you think there with file uploading?
I do not see how uploading a file can represent any kind of
threat to the host system. Of course downloading is another
issue and users should always take appropriate precautions
(e.g. virus scan) when download files from any website.

> File upload is meant as a media file upload (images and
> sounds).
>

Yes but in this context Aldor programs also constitute a kind
of "media".

Actually there are many different types of files that can be
useful for a web site that supports Aldor, e.g. postscript
files, pdf files, dvi files, quicktime demonstrations, mp3
audio and video recordings, flash tutorials, photographs, etc.
In a wiki environment one might wish that these be easily
contributed by Aldor users.
 
> It is much nicer to include the code directly in wiki, it
> is just a matter of using the <pre>...</pre> tags.

Yes I agree in general. However in some cases cutting-and-
pasting from the web page can be problematic, e.g. embedded
tab characters. This is especially true of makefile patches.

> 
> I have allowed file upload for aldor source only, but I am 
> not sure this is very safe.
> 

By "aldor source" do you mean files with an .as extension?

Since uploaded files are not executed by the host system,
why do you think it might not be safe?

In general I think a wiki should have an open access policy,
but this is probably not the right place to be discussing
wiki philosophy...

Regards,
Bill Page.