On Mon, Mar 18, 2013, at 05:15 PM, Rick Mann wrote: > > On Mar 18, 2013, at 16:30 , Kyle Sluder <k...@ksluder.com> wrote: > > > 2. NSCoding is not trustworthy. Your app must blindly trust any object > > archive it loads. This is a significant security risk. > > I don't think that argument is any more true for what I'm proposing than > what what exists today.
You're correct that it's not *more* true, because it's *always* true. You must not use NSCoding for any data which you do not trust as much as the code itself. Reading object archives from NSUserDefaults is a security hazard, as is reading them from ~/Library/Application Support. --Kyle Sluder _______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com