Re: To install a small program from a web browser

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Thanks guys. I found out (or he actually revealed to me) what he wants his members to download
without their knowledge. I refused to work on his project. I knew it sounded fishy.

--- Navid <p42ix-php@xxxxxxxxx> wrote:

> See that's the thing. It's a membership I don't think I would be inclined to do it at all. But
> then again he will reveal to me soon what he acsite. But he still wants to install programs
> without knowledge to the users of his membership site (and no it's not a pornography site...I
> don't do pornography sites). If it was something public tually wants users to install. Would I
> be
> using Filesystem functions to achieve this or CURL or what? Any recommendations on what I should
> read into? Thanks
> 
> > 
> > On Thursday 23 November 2006 11:01, Navid wrote:
> > > Hello everyone,
> > >
> > > I have a client that wants me to build a membership-based website soon. He
> > > has small programs for his members to install. He wants to post a link for
> > > them so that when they click on it the program installs on their machine
> > > automatically. I tried to discourage him from doing that, but he insists on
> > > it. His request sounds kind of fishy to me but then again it's for his
> > > members. Is this possible to do? Thanks in advance to all who can help.
> 
> --- Larry Garfield <larry@xxxxxxxxxxxxxxxx> wrote:
> 
> > The program logic is quite simple.  Provide a link to a .exe file.  User 
> > clicks on it, and the browser will ask if they want to save it or run it.  If 
> > the click run, then it runs and installs whatever malicious code he is trying 
> > to get them to install. :-)  They can also save it and run it later (I 
> > generally recommend this anyway).
> > 
> > If he wants to get around the browser's "hey, are you sure about this?" 
> > messages, then you know it's not above board and should refuse to do so on 
> > moral grounds.  
> > 
> > If the programs themselves are legit, and it's for an internal app of some 
> > kind or a close community or whatnot, then it should be OK, and the 
> > added "are you sure" step is appropriate.  Heck, SourceForge does that; 
> > here's a redirect/link to a .exe file (or .tar.gz, or .zip, or whatever), 
> > have fun.  From there on in, it's the user's problem.  It's only if the site 
> > tries to get around the browser confirmation or masquerade the program as 
> > something other than a downloadable and installable program that there's a 
> > problem.
> > 
> > Depending on what these programs are a java applet or a Firefox plugin may be 
> > more appropriate to the task, but that's a separate issue.
> > 
> > -- 
> > Larry Garfield			AIM: LOLG42
> > larry@xxxxxxxxxxxxxxxx		ICQ: 6817012
> > 
> > "If nature has made any one thing less susceptible than all others of 
> > exclusive property, it is the action of the thinking power called an idea, 
> > which an individual may exclusively possess as long as he keeps it to 
> > himself; but the moment it is divulged, it forces itself into the possession 
> > of every one, and the receiver cannot dispossess himself of it."  -- Thomas 
> > Jefferson
> 
> -- 
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php
> 
> 

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php


[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux