file:// scheme should not be allowed to access a file on remote machines.  RFC 1738, says that host, if present should be the FQDN of the machine, but relaxing on that I thinking that localhost and its variants should okay as long as it is the local machine.

What is going to break in 3.2 is file:// trying to access resources on remote machine via FTP, which it is currently trying to do.

Attached is patch to accomplish this.(NEWS and Docs will be added).

This would introduce a regression, so this may not be backported.

Does it also need a deprecation cycle?

On Sun, Oct 10, 2010 at 03:49:42PM +0000, R. David Murray wrote:
> Does it also need a deprecation cycle?

I think, adding a deprecation cycle might just delay this change.
So, I would prefer if we make it in the 3.2 itself.

- This is not a user-facing API change and I did not see any
  references where people relied upon this behavior. (No bugs / usage
  cases)
- It is actually a bug, because one may not be sure if the ftp service
  is running the machine in the first place and user may not intend
  that ftp service be used for accessing local resources.

We had python-dev discussion on this sometime back when fixing another
bug and conclusion was that we raise a ValueError when file:// scheme
was used in non-local url. Instead of ValueError, I think the generic
URLError is okay too.

If it's been reviewed on python-dev and the consensus was to turn it into an error in 3.2, then I'm fine with it.  But I'll bet we'll get at least a few bug reports :)

file: URIs provoking FTP access seem wrong to me.  Are there widely-used tools displaying this behavior?

I doubt it.  As Senthil says, file invoking ftp it is a bug.  I'm just betting that *someone* is going to complain when it stops working in their particular situation.

Ah, I thought this was not a bug, because of “RFC 1738, says that host, if present should be the FQDN of the machine”.  If it’s a bug I’m all for fixing it in all three versions.

I'd say disable hostnames in file:// URIs altogether. There's no practical reason for forcing a hostname in there, and trying to check that it matches the local host's FQDN sounds like a distraction.

(by disable I meant disallow, sorry)

Éric: Well....I suppose that depends on how you look at it.

The RFC says that 'file:' does not specify a network protocol, and so "it's utility in network protocols between hosts is limited".  So, technically an implementation that decides to handle 'file://<fqdn>' by using ftp isn't *wrong*, but it certainly isn't something that someone writing a 'file:' uri should expect to work.

I agree with Senthil, I am -1 on backporting this to earlier versions because of the potential for breaking "working" applications (even though those applications shouldn't really be working :)

Antoine: except that the RFC allows FQDNs in 'file:' URIs.  So I don't think we can just reject them.

With this explanation, I agree with Senthil’s plan too.

I think the error message should be changed from 'allowed' to 'supported', though.

Thanks for the comments and feedback.
Fixed this in revision 85475.