497734 – Add a warning pop up if a opened file's name ends in multiple extensions in order to expose suspicious files

Bug 497734 - Add a warning pop up if a opened file's name ends in multiple extensions in order to expose suspicious files

Summary: Add a warning pop up if a opened file's name ends in multiple extensions in o...

Status:	RESOLVED WORKSFORME

Alias:	None

Product:	frameworks-kio
Classification:	Frameworks and Libraries
Component:	general (other bugs)
Version First Reported In:	6.9.0
Platform:	Arch Linux Linux

Importance:	NOR wishlist
Target Milestone:	---
Assignee:	KIO Bugs

URL:
Keywords:

Depends on:
Blocks:

Reported:	2024-12-21 01:06 UTC by Fernando M. Muniz
Modified:	2025-01-03 20:13 UTC (History)
CC List:	3 users (show)

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Fernando M. Muniz 2024-12-21 01:06:44 UTC

I'm requesting that if files end in "Sponsorship.pdf.run", ".pdf.scr" or ".txt.exe" would make a window appear, warning the user that the file seems to be masquerading as another file type.

Even though Linux distros in general are mostly unaffected by phishing emails, the user could just think that Plasma is wrongly trying to open the pdf as ".exe", then the user would transfer the file to a Windows computer, infecting it.

Perhaps this should happen for any file with multiple extensions, but maybe they aren't all inherently suspicious.

Comment 1 Nate Graham 2025-01-03 20:13:44 UTC

This *can* be a source of suspicion, but it isn't necessarily problematic. For example in the FOSS world, it's very common for archive files to have the .tar.gz extension, which definitely shouldn't trip this.

What matters here is really whether an *executable* file is masquerading as a normal file. And we already have a popup for such files when you try to open them.