Am Sonntag 23 Juli 2006 17:04 schrieb Dan Kegel:
On 7/23/06, schollsky@arcor.de schollsky@arcor.de wrote:
It would help a lot if WINE would do a more secure installation by default, but this is only my 2p.
(Maybe it's possible just to leave out the Z: mapping?)
My 2 cents: It's an ease-of-use thing. Yes, we should leave out the Z: mapping, but then you have to get the mappings for cd-rom's and the like Just Right.
If somebody gets passionate about this, and is willing to add lots of polish, it could be fixed. But it's hard, and not a core issue blocking further development, so it's kind of low priority.
Disabling the Z:\ drive won't help security because windows applications can still do Linux syscalls (int 0x80) which they can use do do anything native apps do, like accessing files outside wine drive mappings.
I think it's more important that Linux systems are set up properly, like secure access rights and unpriviledged user accounts. If the windows app is run as root it can't do more harm than destroying the home directory, which it can even do without a Z:\ drive entry.