rebolbot
commented
15 years ago Submitted by: Carl
Sounds good. We'll be tuning it over the next few weeks to get the best default.
Open rebolbot opened 15 years ago
rebolbot
commented
15 years ago Submitted by: Carl
Sounds good. We'll be tuning it over the next few weeks to get the best default.
rebolbot
commented
15 years ago Submitted by: BrianH
I was thinking for when a script is run [file throw boot-path read script-path allow], where boot-path = system/options/home and script-path = system/script/path. Then the script can relax security if they dare, so as to be able to read system/options/path, for instance.
rebolbot
commented
15 years ago Submitted by: BrianH
An initial set of alternate default security settings for script execution has been submitted. Take a look.
rebolbot
commented
15 years ago Submitted by: Carl
Ok, building with it for testing purposes.
Submitted by: BrianH
The default security settings of R3 prohibits scripts that are in any directory outside of REBOL directory or its subdirectories, especially from the program arguments. The initial change of directory fails, before the script even runs.
If a script is run from the program arguments, the default security should be file throw, script directory allow, after %rebol.r is run.
Or do you have a better idea?
CC - Data [ Version: alpha 78 Type: Bug Platform: All Category: Security Reproduce: Always Fixed-in:alpha 81 ]