id	summary	reporter	owner	description	type	status	priority	milestone	component	version	resolution	keywords	cc	launchpad_bug
922	The URL of the info page for an unknown dirnode should not grant authority to the containing directory	davidsarah	davidsarah	"For known cap types, the URL of the info page for a dirnode is specific to that directory entry, and does not grant any authority to the containing directory. This is as it should be.

For unknown caps, however, the URL of the info page does include the directory readcap (see the comment at source:src/allmydata/web/directory.py#737).

This grants excess authority -- a user might reasonably expect that info pages do not grant authority to read their containing directory, and it is surprising that this happens ''only'' for unknown nodes.

We could still display both the writecap and readcap URIs of the unknown dirnode, by stuffing both of them into the info page URL."	defect	assigned	major	soon	code-frontend-web	1.5.0		capleak integrity confidentiality newurls