[cap-talk] A couple notes on Palm webOS security
Steve Witham
sw at tiac.net
Thu Jul 2 00:06:32 EDT 2009
These are from my ph file of random info, sorry for the format.
webOS apps are basically Javascript web pages running in a
specialized browser.
>Both Contacts and Calendar will allow applications to add
>information that will get merged into an integrated view.
>They don't allow applications to read, delete or update
>any data that wasn't created by the same application.
Reading between the lines it sounds like each app may have a
Linux user id.
>Note: Palm webOS applications are run from file:// URLs and thus aren't
>restricted by the single-origin policy that makes
>mixing services from different web sites difficult.
--Steve
More information about the cap-talk
mailing list