Re: Privileged file deletion using BetterAuthSample (factored application) : secure?
Re: Privileged file deletion using BetterAuthSample (factored application) : secure?
- Subject: Re: Privileged file deletion using BetterAuthSample (factored application) : secure?
- From: Jerry Krinock <email@hidden>
- Date: Sat, 18 Sep 2010 13:45:28 -0700
On 2010 Sep 04, at 05:06, Michaël Fortin wrote:
> Let me explain my understanding of how BAS works… Please correct me if I'm wrong.
>
> My understanding is that the Helper Tool implements a protocol allowing it to respond to application commands.
> In my case I would have a command which takes a file path and secure deletion mode as input. This helper tool is installed in a privileged directory which grants the tool the right to perform privileged operations. *after the initial installation authentication, the tool is installed in the privileged folder and it always possesses the right to delete privileged files without further authentication*.
No, that's not the way it works. Authorization only lasts for a few minutes. After that, the "privileged" helper tool will ask for authentication again.
A better name would be *Priviligeable* Helper Tool.
_______________________________________________
Cocoa-dev mailing list (email@hidden)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden