Currently we are checking for the rights in each plug-in or even for each
function of each plug-separately. Of course, the reason behind that is to
prevent a possible single location for potential attacks.
However, extending the system filter to pre-check would simplify the security
model for applications that are probably not subject to attacks and in addtion
to that we even could provide a two step filter which again would increase
security for more sensible apps. Let's discuss that.
Please notify forum user philc in case of any updates or discussion results.
Original issue reported on code.google.com by fivefeetfurther@gmail.com on 20 Oct 2010 at 9:23
Original issue reported on code.google.com by
fivefeetfurther@gmail.com
on 20 Oct 2010 at 9:23