[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [sc-dev] quarks install actions

I don't think an extra "please confirm" would change the security at all.

Anybody could check in malicious code into the main trunk of SC just as easily
as into a quark.

And I can think of hundreds of ways to hijack a plane.


On Dec 19, 2006, at 12:38 PM, Dan Stowell wrote:

Quarks don't seem to require any user confirmation for installation,
as far as I can tell. Of course, the command must be executed,