[RFC] Security and Features in KPDF

Tobias Koenig tokoe at kde.org
Mon Jan 3 11:15:27 GMT 2005

On Mon, Jan 03, 2005 at 03:39:13AM +0100, Michael Nottebrock wrote:
> On Monday, 3. January 2005 02:58, Brad Hards wrote:
Hi Michael,

> FWIW, I don't think there's a solution really. Tobias thinks it looks bad if 
> kpdf can't launch an executable or a script, others think it looks bad if it 
> can. Both are right - the question is which crowd do you we all want to 
> please, the one that likes smooth automagic presentations or the one that 
> will pass off KDE as a reimplementation of Microsoft's biggest security 
> bloopers over it.
That's nonsense. A security problem would be to execute the application
without informing the user about or any user interaction.
But we'll ask the user explicitely.

When a user wants to damage its system he can open /usr/bin/init with
KEdit, select all text and hit 'delete' + save, no need for opening a
PDF first...

This feature is not a security risk, its the user infront of the PC!

Separate politics from religion and economy!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <http://mail.kde.org/pipermail/kde-core-devel/attachments/20050103/057c7d71/attachment.sig>

More information about the kde-core-devel mailing list