2 ** TODO Implement SMACK based access control.
3 Currently any application may connect to the settings daemon's web
4 socket, and invoke operations. This is of course a security hole
5 that needs to be closed. To do that a SMACK based approach should
6 employed to limit access to authorized applications, such as the
7 settings app. However, this is not straightforward for Web apps
8 since they all run in the same domain. A policy framework is
9 currently being discussed to address this issue.
12 ** TODO Determine if it makes sense to make the settings daemon multithreaded.
15 ** TODO Validate websocket server port chosen by user.