Fri, 10 Apr 2026 09:35:40 +0000 https://bugs.horde.org/ticket/2076 Need for safe URLs On two occasions now, Horde has generated Potentially Dangerous URL warnings - when clicking on Kronolith attend.php links from IMP, and when clicking on linked attachments links from IMP. I understand the idea behind the warning but it would be helpful if Horde treated things like linked attachments and Kronolith attend.php links as "safe". Sun, 05 Jun 2005 04:03:14 +0000 https://bugs.horde.org/ticket/2076#t8863 There is no way we can do this without rewriting all of Horde to ensure that no destructive action can ever occur on a GET. That's a reasonable long-term goal, though... Sun, 05 Jun 2005 23:04:52 +0000 https://bugs.horde.org/ticket/2076#t8872 Hrm.. that leaves me at an impasse. I want people to use Horde. And I want people to heed warnings on links that make scary (to them) warning statements :) And for once, some of them are actually heeding the warning. That really puts a damper on using linked attachments though. Sun, 05 Jun 2005 23:33:58 +0000 https://bugs.horde.org/ticket/2076#t8873 I'm open to suggestions, if you like. Consider the case of an image in an html email that deletes your calendar, vs. the attend.php links. Should we just make a big ugly list of things we might link to in Horde? I sure don't want to maintain it.... Sun, 05 Jun 2005 23:40:38 +0000 https://bugs.horde.org/ticket/2076#t8874 I don't have any good suggestions on how to handle it. Like I said, I understand why the check is there but it hampers the use of some of Horde's own modules features. Security and useability are often at odds with each other. Mon, 06 Jun 2005 01:29:34 +0000 https://bugs.horde.org/ticket/2076#t8878 Since we only use go.php now when not using cookies, this is much less of an issue. Sun, 09 Nov 2008 16:20:52 +0000 https://bugs.horde.org/ticket/2076#t50598