Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'From an email...' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
From an email...
Authored by: robg on May 20, '04 07:40:22AM
Emailed to me this morning:
  1. Regarding the solution of redirecting the help-protocol to a safe application via the MoreInternet application, there is an important clarification to make. This works only in the scope of the current user!

    If you have multiple users on your machine, you have to repeat those steps in every account on your machine. This is escpecially important, if you normally work in an non-admin account, but have an admin account on your machine, too. If you forget to repeat the procedure in all your accounts, sooner or later you will find yourself working in the admin account without protection.

  2. There was a hint in a German forum, to repeat the redirection steps in MoreInternet also for the telnet protocol, and also to add the ssh and disk protocol and redirect those to a "safe" application, too.
I haven't confirmed the second point, but the first is true -- these changes are at the user, not system, level...

-rob.

[ Reply to This | # ]
From an email...
Authored by: osxpounder on May 20, '04 11:18:16AM

What if you don't have a "disk" or "ssh" protocol shown in the MoreInternet prefs panel? I don't. Should I add them, or leave it alone?

And, regarding changing these settings for every user: what about the user ids that won't take the change, as I mentioned above? Any ideas what's causing that and how to fix? Otherwise, I think I must delete those users and replace them [what a drag].

---
--
osxpounder



[ Reply to This | # ]
Yes you can and you should
Authored by: hamarkus on May 20, '04 01:59:26PM
Yes you can and you should. Just create a new helper. An exploit for the telnet part would be an URL like this:
 telnet://-n%2ftmp%2ftestfile 
This creates a new file in /tmp called testfile and would overwrite an existing file with the same name in the same location.

[ Reply to This | # ]