Helge Hafting wrote: > Protection will not be achieved in most cases, because users are used to
While I agree with what you write in general about security, I do not think this is how things were implemented, so in 'most cases' you are wrong. 1. Unless you do informed decision and go to the prefs and allow dangerous mode you will never be asked and nothing will ever run. This covers 99% of lyx users and usecases. 2. If you are in special need for knitr/gnuplot you can allow it personally for yourself or ask your colleagues to do that as well for shared document. Here your concern applies and here we might differ - I think that from this point it's basically your responsibility to check what you are opening and do not suggest colleagues who don't understand what they are doing to use this feature. If people think that (2.) is still dangerous we might hide it even more so only hackers can use it, but personally I do not see need for it. 3. Chrooting is nice idea and practically hard to achieve across platforms. Many years back when I checked gnuplot devs were against including 'safe mode' so the disable-write18-in-LaTeX alternative for gnuplot is not in our reach either. Pavel
