KDE4 Patch to allow testing/execution of uninstalled kparts/XMLGUI applications
Friedrich W. H. Kossebau
Friedrich.W.H at kossebau.de
Tue Aug 9 11:49:30 BST 2005
Am Dienstag, 9. August 2005 12:36, schrieb Friedrich W. H. Kossebau:
> Am Dienstag, 9. August 2005 03:58, schrieb David Faure:
> > On Tuesday 09 August 2005 03:30, Adam Treat wrote:
> > > I understood it to mean a new command line argument that would specify
> > > the .krcdirs filename. This way, if the flag isn't present, everything
> > > takes place as normal. I can't really see where this is a big security
> > > improvement, but I could take this approach instead, rather than use
> > > the current working directory...
> > >
> > > It wouldn't mean anything other than the app would have to be executed
> > > with the a '--resources' command line parameter in order to run
> > > locally... Does this sound better to you, David? Or do you think we
> > > should just go with the CWD?
> >
> > I see so many people run "./kmyapp" and it fails (no menus, no icons
> > etc.), I think we should make it work out of the box.
>
> If they are able to put a "./" before the app they are also able to put a
> parameter behind. Another idea: Check if the arg0 has "./" before and then
> take this as the security parameter perhaps?
This does not work of course if one develops a plugin/part/whatever. In these
cases I think a proper parameter is acceptable. I mean noone has a problem
with e.g. calling "appletproxy myapplet.desktop" so noone should have a
problem with calling "konqueror --local-resources <mypart.krcdirs>" or alike.
Please consider this.
Regards
Friedrich
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20050809/6e428a8d/attachment.sig>
More information about the kde-core-devel
mailing list