On Sat, 8 Jul 2000 14:26:12 +0300 (EEST), [EMAIL PROTECTED] wrote:
> (Please, can somebody verify if I'm actually subscribed (with the address
> on this mail) to all the lists? Here I've made some changes on the
> imago.ro computers to leave one of them free to install OPENSTEP on
> it; but now I'm not sure if I've moved all the users well...)
>
>
> I'm trying to get an istance of a running application to see if it
> isRunning and to set the value of the "Status:" label of the Processes
> window.
When I wrote the code for handling this. I was concerned about security, and
the possibility of someone hijacking an application and getting it to do
things its owner might not want it to - so the code (in GSServicesManager.m)
currently vets incoming requests and only passes on a few well-known ones like
requesats for the application to perform services or open documents. Other
requests are not passed on the the application object, but may be passed on to
its delegate.
This is actually not a very satisfactory solution - but I'm still reluctant
to make the default action be that anybody can use any method of
NSApplication.
One partial solution that is now fairly easy to implement with the new DO
code would be to only permit requests from other apps on the same host.
I think a proper solution would be to do a security audit and make a list of
NSApplication methods that we think are 'safe' and let these be used by anyone
by default, then provide an API for setting what other methods are ok to be
used.
