This is an interesting one for us, since all users will have write
access to the repository.
Is there an 'execute' permission in sling, or perhaps even an
equivalent to the no execute mount option in posix. I see some
extensions to the DefaultAccessControlManager looming.
Ian
On 22 Apr 2009, at 11:25, Jukka Zitting wrote:
Hi,
I was thinking about the implications of giving a user write access to
a subtree of the repository. With that access the user could now
upload a new script and create a node that invokes that script when
rendered.
What if the script contains something like System.exit(1)? Or
something even more malicious?
Do we have mechanisms for preventing attack scenarios like that?
BR,
Jukka Zitting
