.desktop files and security
Posted Apr 6, 2006 3:07 UTC (Thu) by mrshiny
Parent article: .desktop files and security
The ability for a program to present any icon to the user IS definitely a problem; witness the spread of trojans on Windows platforms because of the default setup of Explorer (it hides file extensions). Users often click on what they think is a JPG when it is actually a program. Recent versions of Internet Explorer go to some lengths to try to inform the user that the file they've just downloaded is a program and it might be dangerous. Whether or not this feature works fully as intended, it is a step in the right direction. GNOME and KDE developers should take note of this issue, because it will affect their users as much as it has already affected Windows users.
to post comments)