Re: "First Run" installation of Application support stuff?
Re: "First Run" installation of Application support stuff?
- Subject: Re: "First Run" installation of Application support stuff?
- From: Sheehan Olver <email@hidden>
- Date: Thu, 19 Dec 2002 16:16:59 -0600
Hmm, I see your point, but it still seems a bit hackish to copy the
applet to Application Support and run it from there. Sure, 99% of the
time there won't be a problem, but I'm sure there are certain
situations dealing with privileges that could be missed. Could there be
some way to leverage Key Chain support so they don't have to type the
password all the time?
On Thursday, December 19, 2002, at 03:29 PM, Peter Sichel wrote:
Couldn't you just copy the applet from your .app bundle to /tmp
whenever you run, and delete it when you quit? This way you don't need
to worry about permissions (/tmp is guaranteed everyone-readwrite,
correct?) Why do you need write access on an applet anyways?
One of the reasons for isolating functions in an applet is to
isolate root privileges to as little code as possible.
How does the applet acquire root privileges?
(A) Have the application ask the user every time?
(B) Be set to SUID root at "first run installation time"
I would argue that (B) is less intrusive and more secure than
(A) which trains the user to casually authenticate applications.
- Peter
_______________________________________________
cocoa-dev mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/cocoa-dev
Do not post admin requests to the list. They will be ignored.