Thanks guys. I found out (or he actually revealed to me) what he wants his members to download without their knowledge. I refused to work on his project. I knew it sounded fishy. --- Navid <p42ix-php@xxxxxxxxx> wrote: > See that's the thing. It's a membership I don't think I would be inclined to do it at all. But > then again he will reveal to me soon what he acsite. But he still wants to install programs > without knowledge to the users of his membership site (and no it's not a pornography site...I > don't do pornography sites). If it was something public tually wants users to install. Would I > be > using Filesystem functions to achieve this or CURL or what? Any recommendations on what I should > read into? Thanks > > > > > On Thursday 23 November 2006 11:01, Navid wrote: > > > Hello everyone, > > > > > > I have a client that wants me to build a membership-based website soon. He > > > has small programs for his members to install. He wants to post a link for > > > them so that when they click on it the program installs on their machine > > > automatically. I tried to discourage him from doing that, but he insists on > > > it. His request sounds kind of fishy to me but then again it's for his > > > members. Is this possible to do? Thanks in advance to all who can help. > > --- Larry Garfield <larry@xxxxxxxxxxxxxxxx> wrote: > > > The program logic is quite simple. Provide a link to a .exe file. User > > clicks on it, and the browser will ask if they want to save it or run it. If > > the click run, then it runs and installs whatever malicious code he is trying > > to get them to install. :-) They can also save it and run it later (I > > generally recommend this anyway). > > > > If he wants to get around the browser's "hey, are you sure about this?" > > messages, then you know it's not above board and should refuse to do so on > > moral grounds. > > > > If the programs themselves are legit, and it's for an internal app of some > > kind or a close community or whatnot, then it should be OK, and the > > added "are you sure" step is appropriate. Heck, SourceForge does that; > > here's a redirect/link to a .exe file (or .tar.gz, or .zip, or whatever), > > have fun. From there on in, it's the user's problem. It's only if the site > > tries to get around the browser confirmation or masquerade the program as > > something other than a downloadable and installable program that there's a > > problem. > > > > Depending on what these programs are a java applet or a Firefox plugin may be > > more appropriate to the task, but that's a separate issue. > > > > -- > > Larry Garfield AIM: LOLG42 > > larry@xxxxxxxxxxxxxxxx ICQ: 6817012 > > > > "If nature has made any one thing less susceptible than all others of > > exclusive property, it is the action of the thinking power called an idea, > > which an individual may exclusively possess as long as he keeps it to > > himself; but the moment it is divulged, it forces itself into the possession > > of every one, and the receiver cannot dispossess himself of it." -- Thomas > > Jefferson > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
