MDL-13949 removed adobe reader XSS bug workaround; merged from MOODLE_19_STABLE

author skodak <skodak>

Mon, 17 Mar 2008 12:36:26 +0000 (12:36 +0000)

committer skodak <skodak>

Mon, 17 Mar 2008 12:36:26 +0000 (12:36 +0000)
author skodak <skodak>
Mon, 17 Mar 2008 12:36:26 +0000 (12:36 +0000)
committer skodak <skodak>
Mon, 17 Mar 2008 12:36:26 +0000 (12:36 +0000)
diff --git a/lib/filelib.php b/lib/filelib.php

index 92a8e70a4457ba7a3c86f5aaf016192ac0c0b8f0..5e989b8975607a7aebf00085b0653a0c1e9a22f8 100644 (file)
--- a/lib/filelib.php
+++ b/lib/filelib.php
@@ -512,6 +512,7 @@ function send_file($path, $filename, $lifetime=86400 , $filter=0, $pathisstring=
      $lastmodified = $pathisstring ? time() : filemtime($path);
      $filesize     = $pathisstring ? strlen($path) : filesize($path);
  
+/* - MDL-13949
      //Adobe Acrobat Reader XSS prevention
      if ($mimetype=='application/pdf' or mimeinfo('type', $filename)=='application/pdf') {
          //please note that it prevents opening of pdfs in browser when http referer disabled
@@ -527,6 +528,7 @@ function send_file($path, $filename, $lifetime=86400 , $filter=0, $pathisstring=
              $lifetime = 1; // >0 needed for byteserving
          }
      }
+*/
  
      //IE compatibiltiy HACK!
      if (ini_get('zlib.output_compression')) {