To comment on the following update, log in, then open the issue: http://www.openoffice.org/issues/show_bug.cgi?id=71807
------- Additional comments from [EMAIL PROTECTED] Wed Nov 22 13:39:37 -0800 2006 ------- The intent of this policy setting is not to prevent application code from accessing some drives altogether. (The user who asked for this in the GTK+ file picker said that their site prevents end-users from browsing their local C: drives. I assume apps are still installed on local drives on that site by sysadmins. It would be rather silly if apps could not access the local drive to read their own data files, store temp files or whatnot. ) I guess the policy is more supposed to be just a "hint" to cooperating software (like Explorer, and Microsoft's own file open dialog) to prevent unsophisticated users from casually browsing "hidden" drives interactively. I don't think it would be correct to block access to the "hidden" drives altogether at lower levels in OOo. I suspect sysadmins on sites that use a policy like this are well aware that determined users can circumvent it, for instance by using VBA or whatever scripting in some app. (Personally I think such a policy is then rather pointless and just false security. But... some customer might think it is useful and perhaps then avoid OOo because it provides a trivial way to get around the policy.) Perhaps the OfficeFilePicker should call some optional functionailty in the UCP like "prefixIsHiddenByPolicy" or whatever that would check if a URI is in a subtree hidden in some platform-dependent way. On Win32 this would be done by checking the NoDrives value. --------------------------------------------------------------------- Please do not reply to this automatically generated notification from Issue Tracker. Please log onto the website and enter your comments. http://qa.openoffice.org/issue_handling/project_issues.html#notification --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
