by diafero » Fri Feb 24, 2012 6:47 am
IMHO "user installs, user runs" is harldy a work-around for programs that are almost only data. The security model does not forbid the user to execute programs he downloaded, for a good reason. It's just that the basic system, the most important programs, and all those for which this can be done in a good way should be read-only to the normal user - and, of course, as little as ever possible should run with higher privileges.
I am running Uru on Linux, and this is exactly what it boils down to - the whole wine runs (of course) with user privileges, so Uru can without any problems update itself.
Of course, a side-effect of this is that if several users on the same machine play Uru, you need several installations (or a globally writeable folder, which is not a good idea). From a security standpoint though this is actually an advantage, since it prevents malware running as user A to easily run as user B by modifying executables started by B.
I prefer e-mails to "diafero arcor de" (after adding the at and the dot) over PMs.
"Many people's horizon is a circle with a radius of zero. They call it their point of view."
Deep Island Shard |
Offline KI