d778a2e4f1057843a549fff1b92037d609a6fc10
braney
  Tue Jan 23 07:31:01 2024 -0800
the default is now to NOT trust trackDb

diff --git src/hg/lib/hdb.c src/hg/lib/hdb.c
index 3d3d5c6..46a09ce 100644
--- src/hg/lib/hdb.c
+++ src/hg/lib/hdb.c
@@ -3954,31 +3954,31 @@
 {
 return trackDataAccessibleHash(database, tdb, NULL);
 }
 
 
 static void addTrackIfDataAccessible(char *database, struct trackDb *tdb,
 	       boolean privateHost, struct trackDb **tdbRetList)
 /* check if a trackDb entry should be included in display, and if so
  * add it to the list, otherwise free it */
 {
 // normally we trust trackDb, but sometimes we don't!
 static boolean checkedTrust = FALSE;
 static boolean trustTrackDb = TRUE;
 if (!checkedTrust)
     {
-    trustTrackDb = cfgOptionBooleanDefault("trustTrackDb", TRUE);
+    trustTrackDb = cfgOptionBooleanDefault("trustTrackDb", FALSE);
     checkedTrust = TRUE;
     }
 
 if ((!tdb->private || privateHost) && (trustTrackDb || trackDataAccessible(database, tdb)) )
     {
     // we now allow references to native tracks in track hubs (for track collections)
     // so we need to give the downstream code the table name if there is no bigDataUrl.
     char *bigDataUrl = trackDbSetting(tdb, "bigDataUrl");
     if (bigDataUrl == NULL)
         tdb->table = trackHubSkipHubName(tdb->table);
     slAddHead(tdbRetList, tdb);
     }
 else if (tdbIsDownloadsOnly(tdb))
     {
     // While it would be good to make table NULL, since we should support tracks