Wine securityflaw.
Greg Turner
gmturner007 at ameritech.net
Thu Oct 31 09:00:56 CST 2002
On Thursday 31 October 2002 08:10 am, Raul Dias wrote:
> My $0.02,
>
> A way to make it more secure is to catch key API calls and decide if
> the application is allowed to run it or not.
not a bad idea.
> Wine could implement a clean Security Layer: YES
Clean, perhaps, but secure? That depends on what you are trying to
achieve: since the unix API is available to apps running under wine,
such measures will only secure applications which don't specifically
check for wine and circumvent its api-level security measures.
So, for example, this could be used to protect a system against security
flaws in Internet Exploder or Outlook... but a malicious virus writer
could work around winapi-based security provisions, as discussed
earlier in this thread.
--
gmt
"The purpose of government is to rein in the rights of the people"
--President Bill Clinton, MTV interview, 1993
More information about the wine-devel
mailing list