• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: AppleScript & HTML Again...
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AppleScript & HTML Again...

  • Subject: Re: AppleScript & HTML Again...
  • From: "John C. Welch" <email@hidden>
  • Date: Thu, 25 Mar 2004 09:46:05 -0600
On 3/25/04 12:05 AM, "Peter Bunn" <email@hidden> wrote:

>
>> And so would the first cracker that figured out you had this application
>> running.
>
> With all due respect... and granted I didn't provide much detail... but
> without even knowing how this is implemented, how are you able to make
> such a snap judgment? And for the sake of the discussion, how would
> someone go about figuring out if it was running or not?

If you're providing a way to implement applescript via html or javascript
then hiding the code to do so in a web page is relatively trivial. You don't
have to detect missing link, you just run the code to see if it's there. If
it is, then you run some script code with some do shell script. You couldn't
do damage outside of the user's authority with easy, but you could do a lot
of damage to that user's setup. If you were really could, you could do a lot
of damage outside of that.

I'm also really not happy about script applications that do this without
VERY detailed information on what steps have been taken to prevent
perversion of the application, especially when the application is read only.

Without that kind of information, this:

"Missing Link is a simple utility that allows you to open, run or launch
almost anything on your Mac from a link or a bookmark in a browser.

Files, folders, applications, script applications, and a variety of other
file types may be linked on disk much like items are linked on the web -
the link format is very similar. But when clicked, linked items behave
just as if they had been double-clicked in the Finder."

Is a potential nightmare

john

--
There is no type of human endeavor where it is so important that the leader
understands all phases of his job as that of the profession of arms.
- Major General James C. Fry
_______________________________________________
applescript-users mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/applescript-users
Do not post admin requests to the list. They will be ignored.

  • Follow-Ups:
    • Re: AppleScript & HTML Again...
      • From: "Gary (Lists)" <email@hidden>
References: 
 >Re: AppleScript & HTML Again... (From: Peter Bunn <email@hidden>)

  • Prev by Date: Re: Is a network file in use?
  • Next by Date: RE: AppleScript & HTML Again...
  • Previous by thread: Re: AppleScript & HTML Again...
  • Next by thread: Re: AppleScript & HTML Again...
  • Index(es):
    • Date
    • Thread