Coda File System

Re: Coda security and root.

From: Ivan Popov <>
Date: Sat, 6 Sep 2003 12:05:23 +0200 (MEST)
On Fri, 5 Sep 2003, Jan Harkes wrote:

> the only recourse for user B would be to
> directly modify the container files in the venus cache directory. If he
> modifies those the files will not be marked as 'dirty' unless user B
> actually changes bits around in RVM (which will probably lead to a
> crash if he forgets to link the faked CMLs correctly).

If a naughty B compiles his/her own venus (or donwloads from a suitable
script-kiddie site) then this operation will be easy, won't it?

... soon we'll get script-kiddies trying to hack Coda sites ...
Received on 2003-09-06 06:08:22