On Fri, 27 Apr 2007, John Taylor wrote:
> This is something I've vacillated about for some time. Like you, I think
> that application-spoofing is actually pretty unlikely, so I wouldn't be in
> favour of adding a lot of complication in order to deal with it. I'd rather
> just put a warning on the spec "don't expose rm -fr * in your application
> through the messaging system!".
That obviously sounds like sensible advice as stated, but in the case I was working with there was no way to prevent the possibility of executing an rm -r if you wanted to be able to send general commands to GAIA, which was something we did want to do.
-- Mark Taylor Astronomical Programmer Physics, Bristol University, UK m.b.taylor@bris.ac.uk +44-117-928-8776 http://www.star.bris.ac.uk/~mbt/Received on 2007-04-30Z10:50:23