[Qgis-psc] The security project for QGIS
Nyall Dawson
nyall.dawson at gmail.com
Sun Dec 1 17:38:36 PST 2024
On Fri, 29 Nov 2024 at 20:12, Vincent Picavet via QGIS-PSC <
qgis-psc at lists.osgeo.org> wrote:
>
> Hi PSC,
>
> Oslandia will be launching soon the "Security project for QGIS". I
explain the project in details below.
* snip *
Thanks for spearheading this project, I think it's a very valuable goal and
I'm excited to see where this leads!
On a related note, I'm really interested in opinions on how much we need to
protect high-security risk organisations from QGIS abuse from WITHIN the
organisation? It seems impossible that we could ever get to a state where
QGIS can be used in areas of high internal security risk when users can
just open a Python console and do **WHATEVER** they want. 😅 I'm wondering
if at some stage we'll need to deliver a "Security hardened QGIS" version
(eg alongside the LTR), which is built with NO Python or plugin support and
could be safely used within these contexts...
Nyall
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osgeo.org/pipermail/qgis-psc/attachments/20241202/1743e0f1/attachment.htm>
More information about the QGIS-PSC
mailing list