> > This *is* a dangerous ability to give, though it's equivalent to what > users grant Skype or WebEx or Hangouts already by installing them > (perhaps less, actually).
Agreed. App installation can never be free from danger. Regardless of any security restrictions, you are granting the app permission to execute on your device. Users can't/don't/wouldn't want to review the source of an app before they install it, and providing insight into API access is only a small step in making that more user-friendly. This is why I have been pushing for the use of termination UI like the "stop recording" and "uninstall & report" persistent UI. Jason Miller 519.872.0797 // developIT <http://developit.ca/> // Jason Miller Design<http://jasonmillerdesign.com/> *Developer of amoebaOS <https://amoebaos.com/>, Shutterborg<http://shutterb.org/> & more * _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
