Excuse me, but WTF. I don't get it. You are downloading a friggin application. To your computer. Hello... McFly!!!!!
Since when did we expect that apps we download to our computers could be trusted willy nilly? Haven't we always had concerns about downloads and trojans? What is new here?
Well the argument seems to be that AIR developers can write apps using techniques such that their app may be more vulnerable to attack from a third party. So even if you trust the developers intentions, that developer may leave their application vulnerable to evil doers.
But again, to me, this is not new, and is nothing unique to AIR. Its true that an AIR app may be attacked. But so can an app written in C# or Java, or C++, etc. Now the argument is that since AIR includes the WebKit web browser that within an AIR app, people may surf to places where Javascript can be run. And since AIR is like a browser, but with potentially fewer restrictions, that it may be possible for the app to be compromised if it does not follow good security practices.
It seems to me that all this just suggests certain real life truths. Reputation is important. Don't eat food that smells bad. Don't sleep in a dirty hotel. Don't use an application from a developer that does not have a good reputation. Or if they don't have a reputation and you want to explore, beware.
The bottom line here is we are talking *desktop* people. This means taking some personal responsibility for what goes on your computer. For each download, it shall be as it always has been. Caveat emptor.
4 comments:
adobe air sucks dick
agreed, adobe air sucks, but adobe air devs and especially that mike guy can eat my smelly serbian balls. I fucking hate that guy he made my life miserable.
I am php/html/ajax guy and I got into writting an air application at work, but ALL documentation is catered towards flex/flash devs. html/javascript air documentation sucks donkey balls.
There is also some book, official html/javascript air developemt guide which is WORST PIECE OF SHIT I ever read.
There is NO WORKING EXAMPLES at all and prepotentous shitfaced adobe air devs assume that everyone should work in flex or flash.
Documentation is terrible, their "security" implementation of sandboxed vs nonsandboxed content is TERRIBLE. It doesn't prevent retards from writting crappy code, everyone and their mothers will create sandbox <-> nonsandbox bridge and still be vulnerable to XSS and shit.
I wasted so much time on this and broke the deadline because I accepeted to develop in adobe air thinking it would be ... breah of fresh ... air ... well all I can say is IT SMELLS LIKE SHIT unless you are flex whore
no u sucks big time,u people dont invent anything but blame .its free so take it or dnt 3$#@ complain.
above coment isnt for the author\blogger
Post a Comment