On May 1, 2008, at 7:35 AM, Christian Schmitz wrote: > Hi, > > have you ever thought about plugin security? > > I mean methods to prevent that a plugin is replaced by another one? > > the RB runtime could at least: > > load only the plugins which match by name and not just load all > plugins in the frameworks folder. This allows very easy code > injection! > > and check the plugins by name, size and a checksum to make sure the > correct plugin is there.
That sounds like a very solid feature request. What I perceive is that the IDE creates an internal checksum (maybe a SHA1 hash value) that is stored within the executable and is then compared at runtime by the runtime framework. Tim _______________________________________________ Unsubscribe or switch delivery mode: <http://www.realsoftware.com/support/listmanager/> Search the archives: <http://support.realsoftware.com/listarchives/lists.html>
