I'm always irritated when I install a program that decides to start a piece of itself out of the registry key
The trouble with that approach is that some installer programs will die horribly when they come up against that. Some quietly ignore the error and carry on; some tell you about the error and let you choose to ignore it; some tell you about the error and die; some die without explaining why. Of course, when you've forgotten that you've done this, and you install some software, and the installer says something like “Installation failed,” with no further explanation... well, you get even more annoyed don't you?
So I propose a new security permission option. In addition to “grant” and “deny”, I would add “ask”, which would override “grant”. If a permission of “ask” were in effect, the system would ask the user what to do, and there would be three possible answers:
- Do it.
- Fail it.
- “Let's not, and say we did.” That is, do not do it, but report success to the requester.
It's possible that “Let's not, and say we did,” could be a good permission choice in itself, but I'd hesitate to allow it without a prompt because it could cause unexpected behaviour when you forget that it's set. It's probably safest to allow it only behind a prompt.
For my readers who're computer types: What do you think?