Re: [OT] When will Apple learn?
Re: [OT] When will Apple learn?
- Subject: Re: [OT] When will Apple learn?
- From: "John C. Welch" <email@hidden>
- Date: Tue, 10 May 2005 07:22:18 -0500
On 5/10/05 03:35, "Martin Orpen" <email@hidden> wrote:
>> That last bit is not correct, obviously. The widget is installed, but not yet
>> actively on the Dashboard. To execute it, the user will still need to drag it
>> there (from whatever that cheese grater at the Dashboard's bottom is called).
>>
>> But given that the user will be completely unaware of having installed a
>> third-party widget, he has no reason to suspect malicious intent - he's quite
>> likely to assume the widget came bundled with Tiger and is thus safe.
>
> Yep, if it has a pretty icon then it will be clicked at some point :-(
>
> Apparently widgets do have a *security model* which states that widgets need
> approval from the user on first run if they want access to specific areas -
> webkit, network, shell etc. Not that that will present much of a problem to
> a normal user who thinks nothing about entering a password on demand...
That's what happens when Apple and ISVs refuse to use home directories
correctly.
--
"Tracers work both ways."
US Army Ordnance.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Applescript-users mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden