strk wrote:
> I keep them disabled because Im scared of consequences :)
> If we implement runtime settings for them I'll be glad to build them.
The only one to worry about is the FileIO extension (the one Udo is
using :-) ), and that will use standard Unix file permissions. While I
do agree we need additional security, I wouldn't be that paranoid right
now. One easy tweak would be to change the user to something like nobody
like apache does, which also reads disk files.
- rob -
_______________________________________________
Gnash-dev mailing list
[email protected]
http://lists.gnu.org/mailman/listinfo/gnash-dev
