[Bf-committers] Blender security: any Onload functions?
Shaul Kedem
shaul.kedem at gmail.com
Thu May 6 21:08:04 CEST 2010
Hi Taro,
A quick tip: do not show security flaws in a software which was not
released yet. even if it is an open source project.
Regarding your question, this is not possible unless the user
explicitly permit the script to run,
Regards,
shul
On Thu, May 6, 2010 at 12:04 PM, Taro Omiya <japtar10101 at gmail.com> wrote:
> Hello everyone. I wanted to comment that Blender 2.5.2 is easily the
> best change on the project since...ever.
>
> In any case, I'm working on a presentation for a course in computer
> security, and I chose Blender 2.5.2 as "my victim." To demonstrate an
> attack, I wanted to create a script that would load automatically on
> file open. Is there a function to do that? I found the "addScriptLink"
> in the old API, and wondered if there was an equivalent to it.
>
> Note that I personally am not a malicious person. I don't consider
> myself that great of a programmer, let alone a hacker. I merely do this
> because it is a major part of my grade.
>
> Thanks for the help!
>
> --
> Taro Omiya
> B.S. Computer Science '10
> Rensselaer Polytechnic Institute
>
> _______________________________________________
> Bf-committers mailing list
> Bf-committers at blender.org
> http://lists.blender.org/mailman/listinfo/bf-committers
>
More information about the Bf-committers
mailing list