1. 17
  1.  

  2. 2

    NB: the article, in all the calls to use their code as a starting point, neglects to mention that the code is under the GNU Affero license.

    Absolutely their call to make, but some readers will need to hit the brakes because of that.

    1. 3

      Why? There is nothing that makes the AGPL different in terms of reading code.

      1. 3

        Not too sure how this would differ from normal GPL in this case, as this is not a network service.

      2. 2

        “You cannot block forever to make a decision, and EndpointSecurity enforces a deadline for each authorization message: If your client blows the deadline, EndpointSecurity will terminate your client process to preserve a functioning system.”

        What’s being referred to here as the “client process”? The app that is making the authorization request, I assume? [EDIT: Upon rereading I now think this is the app that implements the EndpointSecurity API. So are there risks there of something like apps attempting to overwhelm the client process to try to get it killed and then get free reign over the thing that it was supposed to be defending?]

        Likewise, what does this mean? “The big-programs queue works out-of-process so a long-running verification can be aborted whenever necessary.” What happens in the abort case? It defaults to denial? Oh, or client process termination I suppose.