[tahoe-lafs-trac-stream] [tahoe-lafs] #587: Web nodes provide ambient upload authority
tahoe-lafs
trac at tahoe-lafs.org
Fri Jan 4 20:29:07 UTC 2013
#587: Web nodes provide ambient upload authority
-------------------------+-------------------------------------------------
Reporter: | Owner: davidsarah
toby.murray | Status: assigned
Type: defect | Milestone: 1.11.0
Priority: major | Version: 1.2.0
Component: code- | Keywords: upload security accounting
frontend-web | LeastAuthority.com
Resolution: |
Launchpad Bug: |
-------------------------+-------------------------------------------------
Changes (by zooko):
* keywords: upload security accounting lae => upload security accounting
LeastAuthority.com
Old description:
> Under the current webapi, nodes offer ambient upload authority to any
> host that can send them web requests. There are deployment scenarios for
> Tahoe in which this behaviour is undesirable.
>
> A means to disable this behaviour would be useful. In particular, being
> able to turn this behaviour off via a setting in tahoe.cfg could be good.
>
> Discussion surrounding this issue can be found in the thread starting
> here:
> [http://allmydata.org/pipermail/tahoe-dev/2009-January/001015.html]
New description:
Under the current webapi, nodes offer ambient upload authority to any host
that can send them web requests. There are deployment scenarios for Tahoe
in which this behaviour is undesirable.
A means to disable this behaviour would be useful. In particular, being
able to turn this behaviour off via a setting in tahoe.cfg could be good.
Discussion surrounding this issue can be found in the thread starting
here:
[http://allmydata.org/pipermail/tahoe-dev/2009-January/001015.html]
--
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/587#comment:11>
tahoe-lafs <https://tahoe-lafs.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list