[Bf-committers] Blender security paranoia

[Roger Wickes]

+1. Perhaps I wasn't clear on just how annoying pop-ups are in general, 
and in this case, unnecessary, counter-productive, and obviates the reason for the feature
in the first place. Unless someone can point out a flaw in my logic.

If a user doesn't want to / should not / is not in a position to / is not smart enough to
execute scripts at start-up, they leave the auto-start option unchecked, 
(which was pointed out is the default in SVN)
and load the blend file. No popup required, nor desireable. 

Mine is off, btw. I think you should enable it, as I mentioned, if you are in a 
very controlled and trusted environment. Otherwise, leave it off.

For batch mode, if you want any embedded scripts to run before any -p scripts, 
I think you just check auto-start and save the .b.blend. 
Otherwise, leave it unchecked. I would, if I was running a server, generally
explicitly invoke each and every script from the command line, rather than just doing a blender blendfile.
Not only would it be confusing to see that as just the command line, it would be a little obscure
from a self-documentation standpoint to see what function/reason (script) was being run.
However, that is individual choice. 

 --Roger


Check out my website at www.rogerwickes.com for a good deal on my book and 
training course, as well as information about my latest activities. Use coupon
Papasmurf for $15 off!




________________________________
From: Ton Roosendaal <ton at blender.org>
To: bf-blender developers <bf-committers at blender.org>
Sent: Wed, March 24, 2010 11:29:18 AM
Subject: Re: [Bf-committers] Blender security paranoia

Hi Roger,

I would consider such a popup the worst of all compromises. If every  
other option has been exhausted, maybe.

-Ton-

------------------------------------------------------------------------
Ton Roosendaal  Blender Foundation  ton at blender.org    www.blender.org
Blender Institute   Entrepotdok 57A  1018AD Amsterdam   The Netherlands