Opened at 2020-11-14T05:12:42Z
Closed at 2020-12-01T15:15:31Z
#3505 closed defect (fixed)
Grid Manager: consider disallowing downloads as well
| Reported by: | meejah | Owned by: | GitHub <noreply@…> |
|---|---|---|---|
| Priority: | normal | Milestone: | undecided |
| Component: | code | Version: | n/a |
| Keywords: | grid-manager | Cc: | |
| Launchpad Bug: |
Description
The Grid Manager addresses one aspect of managing a grid: rejecting clients that have access to the grid from also offering storage. The implementation currently will use any server at all for download shares (if they have them). This is safe, because we check the (hash of the) ciphertext even before decrypting it and it might increase availability.
During code review, it was pointed out that perhaps it might be worth considering a mode for the grid-manager to reject downloads (or probably simply all operations) except with "blessed" nodes (that is, nodes a grid-manager has issued a still-valid certificate for). See https://github.com/tahoe-lafs/tahoe-lafs/pull/605/files#r318112045
Change History (1)
comment:1 Changed at 2020-12-01T15:15:31Z by GitHub <noreply@…>
- Owner set to GitHub <noreply@…>
- Resolution set to fixed
- Status changed from new to closed
In 5f02e5b/trunk: