gEDA-dev: Clarity or Sanity?
John Doty
jpd at wispertel.net
Mon Jun 11 10:29:33 EDT 2007
On Jun 11, 2007, at 8:10 AM, John Griessen wrote:
>
> As far as including scheme code to execute and worry about "danger"
> of doing that --
> go right ahead. Just live with the danger, and create some other
> HID based
> user interface for irresponsible users to play with safely.
The problem isn't "irresponsible users". It's *malicious* publishers
of symbols. When data has hooks to allow arbitrary code execution,
you're giving virus/trojan creators a free ride. We want to promote
free exchange of symbols, no? The possibility of an infected symbol
would be a real impediment here.
John Doty Noqsi Aerospace, Ltd.
http://www.noqsi.com/
jpd at noqsi.com
More information about the geda-dev
mailing list