Apps that are implemented using traditional technologies, like, e.g. C++ or Java
have already solved this problem, and the solution is quite simple: trust the
origin of the app. E.g. when downloading and installing Libreoffice I trust that
the app will not wipe out my filesystem and that it will not tamper my OS (e.g.
it will not contain viruses). I think that we must not reinvent the wheel, as
unfortunately has been done many times with web technologies.
If ever web technologies want to become a replacement for the traditional ones,
they must allow to do the same things, possibly in a better and simpler way.
So, the solution here is very simple: ask the user if s/he trusts the app, and
if s/he does, provide full access to the filesystem (and remember it).
Do not meddle with what the app wants to do, e.g. that it wants to read only
music, or whatever. No OS ever did that when providing an API for its
filesystem.
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
