Fossil SCM
Add the "Security" section to the "How The Download Page Works" document.
Commit
914d5328b630a8a9c089db30b15c687ce2c9f22fddcc8be3acd1f819992b3aee
Parent
fb38d312c8503bd…
1 file changed
+14
+14
| --- www/aboutdownload.wiki | ||
| +++ www/aboutdownload.wiki | ||
| @@ -74,5 +74,19 @@ | ||
| 74 | 74 | more [/help?cmd=uv|fossil uv rm] commands are run, followed by |
| 75 | 75 | another [/help?cmd=uv|fossil uv sync]. It is important to purge |
| 76 | 76 | obsolete build products since they take up a lot of space. |
| 77 | 77 | At [/repo-tabsize] you can see that the unversioned table takes up |
| 78 | 78 | a substantial fraction of the repository. |
| 79 | + | |
| 80 | +<h2>3.0 Security</h2> | |
| 81 | + | |
| 82 | +Only users with the [/setup_ulist_notes|"y" permission] are allowed | |
| 83 | +to push unversioned content up to the servers. Having the ability | |
| 84 | +to push check-ins (the [/setup_ulist_notes|"i" permission]) is not | |
| 85 | +sufficient. | |
| 86 | + | |
| 87 | +On the Fossil project there are 67 people (as of 2017-03-24) who have | |
| 88 | +check-in privileges. But only 3 people (Richard Hipp, Dan Kennedy, | |
| 89 | +and Joe Mishtachkin) have the ability push unversioned content and thus | |
| 90 | +change the build products on the download page. Minimizing the number | |
| 91 | +of people who can change the build products helps to ensure that | |
| 92 | +rogue binaries do not slip onto the download page unnoticed. | |
| 79 | 93 |
| --- www/aboutdownload.wiki | |
| +++ www/aboutdownload.wiki | |
| @@ -74,5 +74,19 @@ | |
| 74 | more [/help?cmd=uv|fossil uv rm] commands are run, followed by |
| 75 | another [/help?cmd=uv|fossil uv sync]. It is important to purge |
| 76 | obsolete build products since they take up a lot of space. |
| 77 | At [/repo-tabsize] you can see that the unversioned table takes up |
| 78 | a substantial fraction of the repository. |
| 79 |
| --- www/aboutdownload.wiki | |
| +++ www/aboutdownload.wiki | |
| @@ -74,5 +74,19 @@ | |
| 74 | more [/help?cmd=uv|fossil uv rm] commands are run, followed by |
| 75 | another [/help?cmd=uv|fossil uv sync]. It is important to purge |
| 76 | obsolete build products since they take up a lot of space. |
| 77 | At [/repo-tabsize] you can see that the unversioned table takes up |
| 78 | a substantial fraction of the repository. |
| 79 | |
| 80 | <h2>3.0 Security</h2> |
| 81 | |
| 82 | Only users with the [/setup_ulist_notes|"y" permission] are allowed |
| 83 | to push unversioned content up to the servers. Having the ability |
| 84 | to push check-ins (the [/setup_ulist_notes|"i" permission]) is not |
| 85 | sufficient. |
| 86 | |
| 87 | On the Fossil project there are 67 people (as of 2017-03-24) who have |
| 88 | check-in privileges. But only 3 people (Richard Hipp, Dan Kennedy, |
| 89 | and Joe Mishtachkin) have the ability push unversioned content and thus |
| 90 | change the build products on the download page. Minimizing the number |
| 91 | of people who can change the build products helps to ensure that |
| 92 | rogue binaries do not slip onto the download page unnoticed. |
| 93 |