On Mon, Aug 17, 2009 at 12:14:54PM +1000, "Trent W. Buck" <[email protected]> wrote: > I wonder if you can trivially prevent application of setpref patches by > making it inaccessible to Darcs, e.g. > > chmod 1755 _darcs/prefs > chmod 0 _darcs/prefs/prefs > sudo chown root:root _darcs/prefs/prefs
The question is if the result will be a consistent repo or not. I remember that when an 'rmdir' hunk type was applied where there were a few untracked files, then old darcs versions just left the repo in an inconsistent state and one had to run darcs repair to fix it. Now if an attacker can turn a repo to such an inconsistent state (I guess this is all about there are other hunks after the setpref one, but darcs just dies after not being able to apply the setpref one, while under _darcs it records that the patch has been applied or something similar), that's still a problem.
pgpNU7Yzz6Rh0.pgp
Description: PGP signature
_______________________________________________ darcs-users mailing list [email protected] http://lists.osuosl.org/mailman/listinfo/darcs-users
