> you'd have to make sure if you did that that people putting stuff in > contrib were aware > that setting a file's permissions to 600 would have no effect on anyone's > ability to read it. i realise that it is called "contrib" but it does *look* > as if file permissions should work. > > i've always wondered if there might be some way of changing venti > to make it more secure for multi-user access, so accidentally sharing > a root score > isn't quite such a terrible thing.
ignoring the fact that venti doesn't know for (fossil) users, does no authentication .... that's quite a radical shift from unix-like behavior. unix permissions have always been enforced at the file, not the block level. this could lead to situations where you can read parts of a directory entry but get Eperm on other parts. or where you could get Eperm in the middle of a file. idle questions: · has anyone considered making venti extent rather than block based? · does anyone have any performance numbers on resonably fast/modern hardware for venti? - erik
