On Wed, Nov 28, 2012 at 3:09 PM, Fabian Christ <[email protected] > wrote:
> Hi, > > I am -1 for making this the default. > > I would prefer to keep the default really simple. If people want security > they have to do something for it. This is true for most systems and > frameworks that I know about. > Well don't know so many systems. What comes to mind is the db of the world economic forum (WEF), which by being started the default way exposed Bill Gates's Credit card number ;) Otherwise even windows no longer logs me in as administrator without password by default. Reto > > - Fabian > > > 2012/11/28 Reto Bachmann-Gmür <[email protected]> > > > Hi all, > > > > Currently stanbol security is only enabled when stanbol is started with > the > > -s option. I think it would be better to start it with security enabled > by > > default. This follows the "priciple of least damage" as the harm caused > > when a "disable security" option is forgotten is much smaller than the > > potential damage when arbitrary users can suddenly act with all > privileges. > > > > Any objection to such a change? > > > > Reto > > > > > > -- > Fabian > http://twitter.com/fctwitt >
