[ALLY] Re: View 1.1 Security
From: brett:codeconscious at: 16-Apr-2001 10:33
I think tightening it down the way you have done is the right way to go. I
much prefer to know where I stand (everything shut) as opposed to the
Micrsoft model everything open and welcoming. I believe read access can be a
greater security threat than write in some cases - so I think preventing
sneaky scripts from reading the hard disk or any other resource I have
access to is a very good idea.
To make the scheme workable, it would be nice to have an abilitily to
customise the installation to "trust" a user-specified resource - in effect
a "grant/recurse rebol read access on C:\DATA\RebolScripts" for example...
I reckon the biggest risk in computing these days is that the user has to
trust scripts running with user authority and not know what those scripts
*actually* do.
Brett.