ReadIRIS Pro 9
By: Scott Doenges - Revised: 2006-05-30 devin
http://www.irislink.com/opt/uk/products/readiris/mac/index.html- Readiris will not work unless the license file is in its default location: /Library/Application Support/ in versions through at least 9.0r7 -- somewhere between 9.0r7 and 9.0r13 the licence file appears to have been moved to Readiris 9.0.app/Contents/SharedSupport/.
This file requires that all users have write access to it (see the next bullet). One possible workaround could be to move the file into /Users/<user>/Library/Application Support/, then a symbolic link or a Finder alias could be made to the file from the original location. (Tests with both a symbolic link and then with a Finder alias show that Readiris fails to launch, with an error that an exception occurred on launch. With the symbolic link it gives an error code of 5000, with the Finder alias the error code is 39.)
A better option would be for Readiris to take advantage of the Apple-supplied API that allows support files to be found in a number of standard locations, so that admins could move it from a location in the global scope to user space without ill effect. Unfortunately, given that newer versions moved the file from the Library directory to a directory buried within the application itself, it doesn't seem like this is going to happen anytime soon.
- Readiris will also not work unless all users, even non-admin users, have write access to the license file. If the license file doesn't exist when Readiris is launched, it will attempt to create the file, which requires write access to whichever folder your version puts the license file in. This problem can be gotten around by making sure you launch the application and enter the serial number immediately after installing it, as an admin user.
In a lab environment, having writable files outside of user's home directory is a security concern. Making the license file readable, but not writable, by anyone (mode 644 instead of its default 666), causes Readiris to refuse to launch. It gives an error that an exception occurred at launch (error code 5000). Because Readiris does not work when the file is moved to a template user home folder and linked from its original location via symbolic link or Finder alias, the best workaround is to use a script to copy it from a secure location to /Library/Application Support/ when someone logs in. (The following line in a login perl script does the job: system ditto "<path to writable files directory>/PRIF230451" "/Library/Application Support/PRIF230451"";
In limited testing it seems like the application never actually writes to this file.
The best solution would be to allow the application to launch and function with read, but not write, access to the file. Although Apple does provide an API to allow files to be found by the application if they reside in any of a number of different locations, some institutions employ network home directories which have limited storage space. These institutions, if it is safe for them to do so, leave any preference files, license files, or other support files in the global space, where they will only be available on computers that have the application that uses them, and gives users as much space as possible for their documents.
- The serial number is clearly displayed in the splash screen as Readiris launches.
This is a problem because it makes it very easy for someone to steal an institution's license(s). There are potentially several thousand people that have accounts on a large institution's lab computers, and any one of them could, as the application launches, write down the serial number for their own use, which defeats the purpose of serialization.
- The default install is insecure.
A number of files and folders within the Readiris 9/Images/ folder and the Readiris application bundle itself are installed a world-writable (modes 777 and 666). Changing the mode on these files and folder to 755 and 644 respectively does not seem to affect the function of the software, indicating that they don't actually need to be world-writable.
- Documentation
- Administration
- Backup Overview
- CrashPlan Pro
- Data Rescue II
- Data Sanitation
- BRU
- Enterprise Deployment
- Iceberg
- Intro to Mac Mgmt
- Mac OS X on Campus
- Keyserver 6
- KeyServer
- LanSchool
- Local MCX
- MPP
- Nagios Class
- Network Time
- Non Admins Scripts
- Parallel Computing
- Patch Management
- Power Management
- Power Save Mac
- Software Installation
- SpamAssassin
- Poorly-Made Apps
- The List
- Ableton Live 3.0.4
- Adobe Acrobat 6.x
- Adobe Help Center 1.x
- Adobe Photoshop CS2
- Adobe CS2
- Agfa ScanWise X
- Offline Image Viewer
- Classic
- Cleaner 6.0.2
- Cleaner 6.5
- Contribute 3.11
- Creo EverSmartScan
- Director MX 2004
- Dreamweaver 8.0
- EndNote 9.0
- Expression 3.3
- FastTrack Schedule 8
- FileMaker Pro 7
- Final Cut Pro 3.x
- Final Draft 6
- Flash MX 2004
- Flash 8.0
- FreeHand 10
- GarageBand 1.1
- iDVD 4.0.1
- Logic Audio Platinum
- MacLinkPlus Deluxe
- MacVector 7.2.x
- Microsoft Office
- Now Up-to-Date/Contact
- Omnipage Pro 11.x
- OptiCAL 3.7.5
- Painter 7 & 8
- The Print Shop 1.0
- Processing 68
- Pro Tools 6
- QuarkXPress 4.11
- QuarkXPress 6.x
- ReadIRIS Pro 9
- Sorenson Squeeze 4.x
- SPSS 11.0.4
- SuperCollider 0.1
- ThinkFree Office 2.2
- Toast Titanium 7
- Virtual PC 6.x
- VueScan
- Wacom Tablet Driver
- World Book
- What Was Installed
- Determining the Culprits
- Workarounds
- Links
- The List
- Xgrid
- Authentication
- General Software
- Hardware
- Miscellaneous
- Multimedia
- Networking
- Operating Systems
- Outside Presentations
- Programming & Scripting
- Security
- Servers
- Short Courses
- System Deployment
- System Utilities
- What's New
©2022 - University of Utah -
Marriott Library -
ITS - Apple Infrastructure
Disclaimer - 295 South 1500 East, Room 1705J, SLC, UT 84112 - 801.581.6494