On Tue, Jan 14, 2014 at 8:40 AM, Richard Johnson <rjohnson at sourcefire.com> wrote: > The default behavior is more secure if you pass a file:// url to the browser > than if you pass to ShellExecute Ah, I see. Good point.