On Friday, February 8, 2019 at 4:20:25 PM UTC+1, Jeremy Ruston wrote: > > Hi Mario > > On 8 Feb 2019, at 13:53, PMario <[email protected] <javascript:>> wrote: > > - So the only thing you need to know is tiddlywiki.com and you can read > the local storage from all TWs stored in the subdirectories. > > That’s a bug, fixed now: > > https://github.com/Jermolene/TiddlyWiki5/commit/2710fae71d276c8a82e78d4f13b0d2735e0b71f5 >
That's OK. ... BUT ... *My biggest concern is privacy*. ... Now I get even more info about the underlying structure of a webpage. eg: If users with different privileges share a PC, a user which has access to the main origin can see, the subdirectory structure, plus "some" content in plain text. Some setups may use "un-guessable" subdirectory names to store data. This "un-guessable" directory is plaintext, as soon as someone (with the right privileges) ever opened the subdirectory. ... I know, that "security by obscurity <https://en.wikipedia.org/wiki/Security_through_obscurity>" is used, because it's simple to implement. ... I just want to make sure, that our users know about these problems! have fun! mario -- You received this message because you are subscribed to the Google Groups "TiddlyWiki" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at https://groups.google.com/group/tiddlywiki. To view this discussion on the web visit https://groups.google.com/d/msgid/tiddlywiki/f39284b3-3dcd-4f25-b96c-e92356903b09%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
