On Wed, 17 Aug 2011 03:17:30 -0600, Michael Vannorsdel said: >Apologies if this has been covered in the past but my searches did not >turn up anything as specific as I'm looking for.
Are you talking about on Lion? If so, there hasn't been much discussion of this new feature here yet. >Is there a way to refine sandbox entitlements to allow read/write access >to specific files and directories instead of just all or none? For >instance, only allowing RW to Caches and Preferences but nowhere else. com.apple.security.temporary-exception.files.absolute-path.read-write But "temporary-exception" suggests you should file bugs for better solutions. >And on a side question, does outgoing network entitlement mean the >binding of a port for services or does it mean any outbound data such as >an http request? I believe it allows any connections. I haven't seen a way to permit access to only some hosts or only some ports. -- ____________________________________________________________ Sean McBride, B. Eng s...@rogue-research.com Rogue Research www.rogue-research.com Mac Software Developer Montréal, Québec, Canada _______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com