| ▲ | AlienRobot 6 hours ago | |
World of Warcraft is one of the most popular MMO's ever made. You simply can't expect every software that wants a plugin system to have the same security practices as the most used software in the world. In fact, there are many reasons why you might want a plugin to have full filesystem and internet access, such as batch processing or simply adding things directly from webpages. Sandboxing this will just make plugins less useful. In the end it's a problem of trust. You're installing software from untrustworthy developers because you trust the name of the application those plugins are associated with. You could fix the problem in Obsidian, but the same problem will happen in other software. Some of which simply can't justify bothering with sandboxing plugins. This is just the way plugins are. | ||
| ▲ | pdpi 5 hours ago | parent [-] | |
> You simply can't expect every software that wants a plugin system to have the same security practices as the most used software in the world. I'm not saying that I think they should, or that I expect them to. I'm saying that it's one particular implementation of sandboxing that has a bunch of interesting properties, and that makes it worth studying. | ||