Hi Chris,
what worries me is that, unlike FreeMind 0.9.0 beta, OpenOffice is cautious
about all the documents containing any script, even those documents
containing no auto-executable scripts.
Based on OpenOffice, I would propose the following simplified solution for
FreeMind. There shall be two security levels:
- SL1: Secure, the default setting,
- SL2: Insecure.
If SL2 is on, FreeMind shall behave just like it does in 0.9.0 beta12.
If SL1 is on, FreeMind, when opening a document containing any script, shall
ask the user whether to enable or to disable scripting in that particular
document.
OpenOffice has a more complex solution. It has more security levels. It
enables listing certain sources of documents are secure, meaning there is no
pop up asking whether scripting shall be enabled for the documents coming
from those sources.
What I have written about OpenOffice is also mostly true of Microsoft
Office.
Do you think that OpenOffice and Microsoft Office are actually overcautious?
In this post, I am leaving the issue exposed APIs unaddressed.
Best regards,
Dan
-------------------------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc.
Still grepping through log files to find problems? Stop.
Now Search log events and configuration files using AJAX and a browser.
Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________
Freemind-developer mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/freemind-developer
