[tahoe-lafs-trac-stream] [Tahoe-LAFS] #3505: Grid Manager: consider disallowing downloads as well
Tahoe-LAFS
trac at tahoe-lafs.org
Sat Nov 14 05:12:42 UTC 2020
#3505: Grid Manager: consider disallowing downloads as well
--------------------------+---------------------------
Reporter: meejah | Owner:
Type: defect | Status: new
Priority: normal | Milestone: undecided
Component: code | Version: n/a
Keywords: grid-manager | Launchpad Bug:
--------------------------+---------------------------
The Grid Manager addresses one aspect of managing a grid: rejecting
clients that have access to the grid from also offering storage. The
implementation currently will use any server at all for download shares
(if they have them). This is safe, because we check the (hash of the)
ciphertext even before decrypting it and it might increase availability.
During code review, it was pointed out that perhaps it might be worth
considering a mode for the grid-manager to reject downloads (or probably
simply all operations) except with "blessed" nodes (that is, nodes a grid-
manager has issued a still-valid certificate for). See https://github.com
/tahoe-lafs/tahoe-lafs/pull/605/files#r318112045
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/3505>
Tahoe-LAFS <https://Tahoe-LAFS.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list