[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-core-devel
Subject:    Re: [RFC] Security and Features in KPDF
From:       Tobias Koenig <tokoe () kde ! org>
Date:       2005-01-03 11:15:27
Message-ID: 20050103111527.GB1016 () ghostdog ! localnet
[Download RAW message or body]


On Mon, Jan 03, 2005 at 03:39:13AM +0100, Michael Nottebrock wrote:
> On Monday, 3. January 2005 02:58, Brad Hards wrote:
Hi Michael,

> FWIW, I don't think there's a solution really. Tobias thinks it looks bad if 
> kpdf can't launch an executable or a script, others think it looks bad if it 
> can. Both are right - the question is which crowd do you we all want to 
> please, the one that likes smooth automagic presentations or the one that 
> will pass off KDE as a reimplementation of Microsoft's biggest security 
> bloopers over it.
That's nonsense. A security problem would be to execute the application
without informing the user about or any user interaction.
But we'll ask the user explicitely.

When a user wants to damage its system he can open /usr/bin/init with
KEdit, select all text and hit 'delete' + save, no need for opening a
PDF first...

This feature is not a security risk, its the user infront of the PC!

Ciao,
Tobias
-- 
Separate politics from religion and economy!

["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]