[tahoe-lafs-trac-stream] [Tahoe-LAFS] #587: Web nodes provide ambient upload authority
Tahoe-LAFS
trac at tahoe-lafs.org
Wed May 29 20:11:02 UTC 2019
#587: Web nodes provide ambient upload authority
-------------------------+-------------------------------------------------
Reporter: | Owner: daira
toby.murray |
Type: defect | Status: new
Priority: major | Milestone: 1.14.0
Component: code- | Version: 1.2.0
frontend-web | Keywords: upload security accounting
Resolution: | LeastAuthority.com websec
Launchpad Bug: |
-------------------------+-------------------------------------------------
Comment (by exarkun):
Reading the mailing list thread, it seems like the change was reverted
because it only allows the removal of the ambient authority to perform
"unlinked" writes - in other words, to create brand new "top-level"
shares. This is easily subverted by a malicious client who has any single
write-cap for the system.
So is it actually possible to fix this issue without some much larger
change - eg, "Accounting"?
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/587#comment:16>
Tahoe-LAFS <https://Tahoe-LAFS.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list