From kde-core-devel  Mon Jan 03 23:55:50 2005
From: Tobias Koenig <tokoe () kde ! org>
Date: Mon, 03 Jan 2005 23:55:50 +0000
To: kde-core-devel
Subject: Re: [RFC] Security and Features in KPDF
Message-Id: <20050103235549.GB27341 () ghostdog ! localnet>
X-MARC-Message: https://marc.info/?l=kde-core-devel&m=110479658003116
MIME-Version: 1
Content-Type: multipart/mixed; boundary="--TakKZr9L6Hm6aLOc"


--TakKZr9L6Hm6aLOc
Content-Type: text/plain; charset=iso-8859-15
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Mon, Jan 03, 2005 at 11:17:31PM +0100, Waldo Bastian wrote:
> On Monday 03 January 2005 00:19, Tobias Koenig wrote:
Hi Waldo,

> > This is really a save solution. When the user still clicks on 'Ok' and
> > the virus/wurm is executed... well, that's the users problem.
>=20
> The idea of KDE applications is to help the user solve the problems (s)he=
=20
> already has, giving the user more problems is counter-productive.
I don't want to create new problems, maybe with the dialog we can even
educate the users a bit.

> > So I'd like to ask the core-developers if it's ok to add this feature to
> > KPDF again together with the necessary security options.
>=20
> No, I don't think that's ok because many users will not have enough relev=
ant=20
> knowledge to decide what to do when confronted with such dialog, "kjots" =
and=20
> "rm -rf" are equally cryptic to many.
Ok, but we can't help these kind of users anyway... when they read in a
web forum

  Optimization Tips for Linux

  To get more space on you hard disk under linux just type in the
  following commands:
    su
    <type in your secret password>
    rm -Rf /

then they will do it. It doesn't matter if this information is part of a
web forum or part of a PDF file. If the user doesn't understand what he
is doing he shouldn't do it.

> I suggest that you add a command line option to explicitly
> enable such dangerous behavior as Stephan Binner already
> proposed.
Ok, that's a reasonable compromise solution IMHO,
thanks for discussion.

Ciao,
Tobias
--=20
Separate politics from religion and economy!

--TakKZr9L6Hm6aLOc
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: Digital signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB2duFSvFUKpY6VLARAjDDAJ9xiYX9+HSGSdRoXPO5soRSpi+WuwCgraRD
UxpvrBLHKbVG/gBEIYz2OKc=
=9kzL
-----END PGP SIGNATURE-----

--TakKZr9L6Hm6aLOc--