Hello again.

I have put online a proof of concept version of a file varification mechanism. the details:

I have played around with the adobe svg plugin a bit (Version 3.01 / FireFox 1.0PR / Linux). It seems that JavaScript is supported, but does not have access to the HTML-DOM, which is good. I thought about trying this in MSIE, but then i thought some more...

Basically, this leaves us with the situation that JavaScript in SVG is as secure as JavaScript in HTML - it isn't. So the solution would be IMHO to

a) reject all files that (somhow) look like HTML. b) reject all files that (somhow) contain javascript. c) scan all uploaded files for viruses.

I have put up a crude prototype of such a checker:

http://area23.brightbyte.de/checkfile-test.php

The source is available there, but would need some modifications to be integrated into mediawiki (i guess - i have never looked into the source, and i don't plan to). To discuss what i have done here, please go to

http://de.wikipedia.org/w/wiki/Benutzer:Duesentrieb/checkfile

I hope you like it and it's not to hard to put it in. It would be extremely helpful if we could again upload "obscure" things like MIDI and SVG to the Wikipedia.

tnx, daniel