[therube]

Open in Regedit


Using the NirSoft utility, RegScanner v1.50, enabling its' reg: URL "protocol", & a bookmarklet,
you too can open registry entries, as posted on a web page, in (Windows) Regedit.

Highlight a Registry entry, click the bookmarklet, & poof!


Sample registry keys:

Code: Select all

HKCU\Control Panel\Desktop
HKEY_CURRENT_USER\Control Panel\Desktop
HKLM\Software\Microsoft\Windows\CurrentVersion


REG Bookmarklet (basically I modified an existing dictionary bookmarklet):

Code: Select all

javascript:Qr=document.getSelection();if(!Qr){void(Qr=prompt('Registry entry to find:',''))}if(Qr)location.href='reg:'+(Qr)


Enabling reg: URL adds these (abbreviated) entries to your Windows Registry:

Code: Select all

----------------------------------
Keys added:8
----------------------------------
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg\shell
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg\shell\open
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg\shell\open\command
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg\shell
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg\shell\open
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg\shell\open\command

----------------------------------
Values added:6
----------------------------------
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg\shell\open\command\: ""C:\DEV\UTILS\Nirsoft\RegScanner.exe" /regedit "%1""
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg\: "URL:RegEdit Protocol"
HKEY_USERS\S-1-5-21-118~...~010\Software\Classes\reg\URL Protocol: ""
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg\shell\open\command\: ""C:\DEV\UTILS\Nirsoft\RegScanner.exe" /regedit "%1""
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg\: "URL:RegEdit Protocol"
HKEY_USERS\S-1-5-21-118~...~010_Classes\reg\URL Protocol: ""


Thoughts, ideas, enhancements, I'm open to it all. (Not that I may necessarily be able to do anything with those suggestions ).

Any security related consequences?


Original thread, idea: Open in Regedit.

[therube]

The latest round of security fixes (& most likely Bug 387333 – unauthorized access to wyciwyg://) has broken my Open in Regedit "bookmarklet" .

Ideas on how to get it back?
How to tell Mozilla to allow a RegEdit:// "protocol" (URL:RegEdit Protocol) - safely?

[Zoolcar9]

Add new entry in about:config "<a href="http://kb.mozillazine.org/Network.protocol-handler.external.%28protocol%29">network.protocol-handler.external.RegEdit</a>" (type=boolean) and set the value to "true".

[therube]

Looking further it is not the RegEdit "protocol" that is not working - RegScanner does run, & (windows) regedit does open, it is that the parameter being passed is being, is it called URL encoded.

So, <code>HKCU\Control Panel\Desktop</code> is being passed as <code>HKCU%5CControl Panel%5CDesktop</code>.

Is there a way to send the string literally?
Perhaps a change in the bookmarklet?

-------

Ok, no need to do that.

[therube]

What Zoolcar9 suggested works! Thanks !

Now perhaps if someone could briefly explain just what setting that Preference item did to allow this to work correctly. Why did setting the Preference allow the literal string to be passed, rather then the encoded one?


An aside ... I wonder if these warnings from MS are (new &) a result of the recently exposed exploits (& now fixed in Mozilla).

Security Alert Applications handling URL protocols must be robust in the face of malicious data. Because handler applications receive data from untrusted sources, the URL and other parameter values passed to the application may contain malicious data attempting to exploit the handling application. For this reason, handling applications that could initiate unwanted actions based on external data must first confirm those actions with the user.

Note In addition, handling applications should robustly handle URLs that are overly long or contain unexpected (or undesirable) character sequences.
http://msdn2.microsoft.com/en-us/library/aa767914.aspx

PS: NirSoft just put out this little tool, URLProtocolView.

"URLProtocolView is a simple utility that displays all URL protocols (for example: ftp:, telnet:, mailto:) that are currently installed on your system. For each URL protocol, the following information is displayed: The protocol name, the protocol description, the command-line that is executed when you type or click the URL, the product name, and the company name.

This utility also allows you to easily enable/disable the URL protocols."

[therube]

Oops, I forgotten to get back to this thread.


Turns out it was not Mozilla security fixes that nixed this, but rather the NoScript extension.

That has since been rectified (with an update to NoScript) by setting a NoScript preference item, noscript.fixURI.exclude , with an appropriate value, "reg" in this case.
http://forums.mozillazine.org/viewtopic ... 07#2994407