177
edits
Apps/Security/Other: Difference between revisions
→Open questions
(Created page with "= Other = This section contains questions, sections and comments whose purpose has not been made clear, and open issues. ==== Kernel permissions manager ==== {lkcl.15mar12.222...") |
|||
| Line 55: | Line 55: | ||
#* origin (scheme + host + port) | #* origin (scheme + host + port) | ||
#* certificate / hash embed inside WebApp manifest | #* certificate / hash embed inside WebApp manifest | ||
# Should eval() and similar functions be considered sensitive APIs / restricted? | # Should eval() and similar functions such as script-injection be considered sensitive APIs / restricted? | ||
#* Adobe AIR restricts eval() in the application sandbox [http://help.adobe.com/en_US/air/html/security/WS485a42d56cd1964150c3d3a8124ef1cbd62-7ffe.html (docs)] | #* Adobe AIR restricts eval() in the application sandbox [http://help.adobe.com/en_US/air/html/security/WS485a42d56cd1964150c3d3a8124ef1cbd62-7ffe.html (docs)] | ||
# Should self-signed certificates be allowed? | # Should self-signed certificates be allowed? | ||