Re: [Monotone-devel] db kill_rev

monotone-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Monotone-devel] db kill_rev_locally

From:	Daniel Carrera
Subject:	Re: [Monotone-devel] db kill_rev_locally
Date:	Sun, 12 Oct 2008 00:06:49 +0200
User-agent:	Thunderbird 2.0.0.17 (Macintosh/20080914)

Ethan Blanton wrote:

Monotone *cannot* have anything but recovery.  If the attacker has
write access to your database on the filesystem (which is necessary
for thsi attack), he/she can just fire up 'sqlite' and remove as many
records as desired.  It doesn't matter what monotone wrote or
annotated, in that case.

In general, yes, audit trails are great -- but make sure your
prevention and detection match the threat model you're supposing.

See my last email. There are standard ways to avoid modification of thedatabase file through anything but 'mtn'.


Daniel.

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Monotone-devel] db kill_rev_locally, (continued)
- Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
- Re: [Monotone-devel] db kill_rev_locally, Nathaniel Smith, 2008/10/11
  - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carosone, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - [Monotone-devel] Re: db kill_rev_locally, Bruce Stephens, 2008/10/11
    - Re: [Monotone-devel] Re: db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Jack Lloyd, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Ethan Blanton, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera <=
    - Re: [Monotone-devel] db kill_rev_locally, Ethan Blanton, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Ethan Blanton, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Ethan Blanton, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/11
    - Re: [Monotone-devel] db kill_rev_locally, Ludovic Brenta, 2008/10/12
    - Re: [Monotone-devel] db kill_rev_locally, Daniel Carrera, 2008/10/12
    - Re: [Monotone-devel] db kill_rev_locally, Ethan Blanton, 2008/10/12

Prev by Date: Re: [Monotone-devel] db kill_rev_locally
Next by Date: [Monotone-devel] Re: db kill_rev_locally
Previous by thread: Re: [Monotone-devel] db kill_rev_locally
Next by thread: Re: [Monotone-devel] db kill_rev_locally
Index(es):
- Date
- Thread