[tahoe-dev] [tahoe-lafs] #995: It's way too easy to give away write directory caps
tahoe-lafs
trac at tahoe-lafs.org
Mon Dec 13 13:07:40 UTC 2010
#995: It's way too easy to give away write directory caps
-----------------------------------+----------------------------------------
Reporter: jsgf | Owner: nobody
Type: defect | Status: new
Priority: major | Milestone: undecided
Component: code-frontend-web | Version: 1.6.0
Resolution: | Keywords: wui jsui usability confidentiality capleak
Launchpad Bug: |
-----------------------------------+----------------------------------------
Comment (by gdt):
One could also argue that people needing to use the WUI rather than
mounting tahoe into the host is a significant part of the problem.
Generally in cryptographic systems one tries to keep users from handling
keying material. On Unix-like systems a FUSE implementation (or the
existing sftp support) would work, but I don't know if FUSE works on
windows.
--
Ticket URL: <http://tahoe-lafs.org/trac/tahoe-lafs/ticket/995#comment:13>
tahoe-lafs <http://tahoe-lafs.org>
secure decentralized storage
More information about the tahoe-dev
mailing list