Menu
▾
▴
Re: [Exist-development] [HEADS-UP] Merge in of Security Branch
|
From: Casey J. <cas...@jo...> - 2012-02-08 19:22:48
|
So I am confused, does that mean a user would be able to execute a script without read access because the system/interpreter would be executing so it would have read access? Regardless I tend to agree with Dimitriy, in the fact that forcing the source of an XQuery to be exposed just for execution is certainly a security vulnerability. It makes sense in Unix but not really in eXist. Cheers, Casey On Wed, Feb 8, 2012 at 1:19 PM, Hungerburg <pc...@my...> wrote: > Am 08.02.2012 16:40, schrieb Joe Wicentowski: > > > > You're saying that we need to start realizing that permissions now > > dictate whether the the *system* can read/write/execute resources on a > > given user's behalf, not whether the *user* can read/write/execute > > resources. The system is now an explicit intermediary between the > > user and resources. The system is the user's agent in > > reading/writing/executing resources. > > How about that: The system, when executing/acting on behalf of a user, > becomes her agent. The agents permissions are restricted by the > principals, ie. users permissions. > > Therefore, in the unix model, interpreted scripts have to be readable, > because they are not executed, instead the interpreter is executed, > which then processes the text of the script. > > The exception are set-uid and set-gid executables, where the system dons > the permissons of a specified other user/group, when acting for some > user. It is NEVER a good idea to make something interpreted setuid! > > If one can consider xquery /the native binary format/ in eXist-db, the > model would look a lot more, like what you are used to. > > -- > peter > > > ------------------------------------------------------------------------------ > Keep Your Developer Skills Current with LearnDevNow! > The most comprehensive online learning library for Microsoft developers > is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, > Metro Style Apps, more. Free future releases when you subscribe now! > http://p.sf.net/sfu/learndevnow-d2d > _______________________________________________ > Exist-development mailing list > Exi...@li... > https://lists.sourceforge.net/lists/listinfo/exist-development > -- -- Casey Jordan easyDITA a product of Jorsek LLC "CaseyDJordan" on LinkedIn, Twitter & Facebook (585) 348 7399 easydita.com This message is intended only for the use of the Addressee(s) and may contain information that is privileged, confidential, and/or exempt from disclosure under applicable law. If you are not the intended recipient, please be advised that any disclosure copying, distribution, or use of the information contained herein is prohibited. If you have received this communication in error, please destroy all copies of the message, whether in electronic or hard copy format, as well as attachments, and immediately contact the sender by replying to this e-mail or by phone. Thank you. |
