Custom Query (57 matches)
| Ticket | Summary | Keywords | Status | Owner | Type | Priority |
|---|---|---|---|---|---|---|
| #2222 | make a FAQ describing the impact of heartbleed on Tahoe-LAFS | security integrity confidentiality pyopenssl heartbleed docs | assigned | blaisep | defect | critical |
| #366 | address Nathan Wilcox's concerns about "Tahoe and the browser security model" | security capleak docs websec | assigned | blaisep | defect | major |
| #492 | mutable files: add ciphertext hash tree to signature block | newcaps security integrity forward-compatibility backward-compatibility mutable | new | zooko | defect | major |
| #587 | Web nodes provide ambient upload authority | upload security accounting LeastAuthority.com websec | new | daira | defect | major |
| #635 | 'tahoe make-tarball' command | backup metadata symlink usability security | new | enhancement | major | |
| #725 | We should whine if we're running as root. | easy security usability unix test-needed | assigned | davidsarah | enhancement | major |
| #753 | use longer storage index / cap for collision resistance | newcaps security | new | defect | major | |
| #827 | Put file download links ('?save=true') in WUI directory listings | security usability capleak docs download easy | assigned | davidsarah | defect | major |
| #840 | Allow all CLI commands to take arguments from stdin or a file, to avoid caps being visible to other local users | security confidentiality integrity usability | new | enhancement | major | |
| #865 | Document current crypto and encoding in detail | docs security | new | ioerror | task | major |
| #870 | Prevent socket hijacking on OSes that don't prevent it by default (Windows) | security integrity confidentiality privacy windows foolscap twisted docs | assigned | davidsarah | defect | major |
| #958 | LAFS 301 Moved Permanently | forward-compatibility backward-compatibility integrity newcaps newurls http sftp ftpd smb availability security revocation rollback research | new | enhancement | major | |
| #981 | chroot support? | security twisted chroot install | new | somebody | enhancement | major |
| #994 | support precompressed files | compression space-efficiency performance bandwidth security integrity backward-compatibility | new | somebody | enhancement | major |
| #1008 | Unhandled error conditions disclose detailed information | wui security privacy anonymity logging error anti-censorship | new | defect | major | |
| #1136 | don't run a web-API frontend if you don't need one | security websec | new | somebody | enhancement | major |
| #1142 | Unlikely XSS Potential in File Names in WUI | security xss html names wui | new | nobody | defect | major |
| #1144 | Loopy/Uninhibited/Overlarge Filename Makes Web Server Crump | security names wui | new | nobody | defect | major |
| #1198 | Bogus tub location causes introducer error | error introducer security DoS | new | defect | major | |
| #1213 | Should support change of hash functions | security forward-compatibility integrity | new | somebody | task | major |
| #1215 | add CORS support | security http same-origin cors websec | new | enhancement | major | |
| #1254 | eliminate use of urllib.urlopen in check_load | security capleak | assigned | davidsarah | defect | major |
| #1290 | replace all use of pickles with JSON | security pickle json | new | somebody | defect | major |
| #1422 | https node.url is not verified by httplib | https security integrity confidentiality | new | nobody | defect | major |
| #1447 | add read-only mode for gateways | readonly gateway security testgrid cloud-backend multiuser-gateway | new | zooko | enhancement | major |
| #1649 | WUI: the error message page for a writeable file/directory nonobviously includes the write cap | usability security capleak websec | assigned | davidsarah | defect | major |
| #1665 | Brainstorm webapi vulnerabilities between the operator and a user and between users. | docs security webapi introducer accounting status websec multiuser-gateway | new | task | major | |
| #1697 | there is no test covering password-checking for SFTP or FTP | tests sftp ftpd password security | assigned | daira | defect | major |
| #1797 | WUI: view content in an HTML5 sandboxed iframe | wui security usability javascript sandbox same-origin websec | new | defect | major | |
| #1798 | Segregate gateway HTTP ports: one for raw bytes and one for generated WUI pages | wui same-origin security capleak | new | freddyb | defect | major |
| #1859 | Proof-of-concept attack: Upload and execute attacker controlled js from any domain. | security javascript same-origin capleak websec | new | davidsarah | defect | major |
| #2055 | Building tahoe safely is non-trivial | install security eggs pip setuptools packaging | new | daira | defect | major |
| #2090 | Don't expose URIs after failed CLI commands | easy security capleak error cli | new | daira | defect | major |
| #2214 | DOS defect concerning forged shares | DOS security verify tahoe-check | new | daira | defect | major |
| #2385 | node web server should use DHE/ECDHE suites automatically | security websec https forward-secrecy twisted | new | j3i | enhancement | major |
| #925 | Information leak to holders of a directory read cap, about whether each dir entry is writeable and the length of its write cap | backward-compatibility privacy security | assigned | daira | defect | normal |
| #1408 | accounting using bitcoins | bitcoin accounting performance leases security | new | somebody | defect | normal |
| #1415 | WUI is more useful than CLI | security privacy capleak integrity confidentiality | new | defect | normal | |
| #1535 | Allow restricting Tahoe-LAFS gateway to one user by supporting Unix sockets | wui cli socket unix security confidentiality integrity capleak | new | enhancement | normal | |
| #1694 | package client and server separately | performance security packaging p2p | new | somebody | enhancement | normal |
| #1850 | Design new caps to be resilient against human transcription errors. | newurls usability standards uri | new | davidsarah | defect | normal |
| #2009 | One Grid to Rule Them All | extensibility servers-of-happiness location newurls security globalcaps | new | daira | defect | normal |
| #2010 | Implement shortcuts to caps | usability newurls introducer security aliases | new | enhancement | normal | |
| #2024 | downloader hangs when server returns empty string | download hang denial-of-service security | new | defect | normal | |
| #2057 | reproducible builds | install security eggs | new | daira | enhancement | normal |
| #2100 | passphrase-encrypt the aliases file | aliases security capleak usability | new | daira | enhancement | normal |
| #2136 | Use Content-Security-Policy to harden the WUI | csp wui security xss javascript | new | daira | defect | normal |
| #2213 | Make SFTP generate its own key | sftp ssh-keygen usability security | new | enhancement | normal | |
| #2331 | don't display capabilities without user explicitly asking for it | security capleak | assigned | daira | defect | normal |
| #2369 | Support encryptionless sftp using sftp-over-tcp | performance security confidentiality integrity | new | HoverHell | enhancement | normal |
| #2421 | connect tahoe-lafs repo to Docker Hub | docker security github | new | warner | defect | normal |
| #2478 | back up metadata from github (PRs, commit comments, etc.) | github security | new | task | normal | |
| #2720 | format_http_error leaks the URI | security capleak | new | daira | defect | normal |
| #3878 | Potential denial of service attack by rogue servers | availability, security | new | defect | normal | |
| #982 | grsec disallows tahoe from learning its own IP address | security grsec iputil transparency | new | ioerror | defect | minor |
| #1039 | Keys with passphrases for SFTP | sftp security | new | nobody | defect | minor |
| #1410 | sftp server listens on reachable IP addresses by default | sftp security | new | defect | minor |
Note: See TracQuery
for help on using queries.
