-
-
Notifications
You must be signed in to change notification settings - Fork 1.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
/openAction can be considered malicious #602
Comments
I have this problem. Customers email is blocking the PDF file. |
Just to complement, I did some testing, and the files generated by version 6.0 do not have this problem. |
Can you compare and/or provide those files? Maybe share a HTML/PHP code used to generate files causing this behaviour? What software exactly is blocking the files? |
E-mail from customers is refusing the message, and sending to SPAM. |
Can you compare and/or provide those files (6.0 vs 7+)? Maybe share a HTML/PHP code used to generate files causing this behaviour? What software exactly is marking the files as spam? (what e-mail provider)? Can you get headers of the delivered mail to see spam marking headers? |
You don't need to do anything special.
will cut in. Sorry, I don't know which software caused the rejection of the PDFs. We got complaints from customers that the attachment was stripped from a mail, which was enough for me to search for the culprit. VirusTotal gave me a warning about /OpenAction which made me investigate a bit more (see google link above). So I changed Mpdf.php as indicated above. PDF document still works as intended, no complaints since, problem solved. You can try to upload f.e. https://github.com/mpdf/mpdf-examples/blob/development/pdf/sample_basic.pdf to virustotal. The file is scanned clean, only under Details -> PDF Info you get the warning. |
Follows a client's email image (GMAIL) for example. The message says:
HTML code to generate PDF:
|
We also have this problem. When I remove the pdf that is generated by Mpdf, it reaches the inbox. When I add the pdf, it doesn't reach the inbox. The server log says the following: Does anyone have a solution for this problem? |
In development branch, this can be mitigated with Will be released with 8.0.1. With 9.0, the default can be changed so that no OpenAction is written by default. |
Since /OpenAction can be used to execute malware* (and hence documents containing it might be blocked by virus scanners) it would be nice to have an option to disable it. Since all is written in the
_putcatalog()
function it would be easiest to addelseif ($this->ZoomMode == 'none') {}
there andor $zoom == 'none'
toSetDisplayMode
function. And of course add to the documentation...*See https://www.google.de/search?q=PDF+%2FOpenAction+malware
The text was updated successfully, but these errors were encountered: