Add notes about possible security issues with rename - these look to be already cover...

author http://www.cse.unsw.edu.au/~willu/ <http://www.cse.unsw.edu.au/~willu/@web>

Fri, 25 Jul 2008 01:46:23 +0000 (21:46 -0400)

committer Joey Hess <joey@kitenet.net>

Fri, 25 Jul 2008 01:46:23 +0000 (21:46 -0400)
author http://www.cse.unsw.edu.au/~willu/ <http://www.cse.unsw.edu.au/~willu/@web>
Fri, 25 Jul 2008 01:46:23 +0000 (21:46 -0400)
committer Joey Hess <joey@kitenet.net>
Fri, 25 Jul 2008 01:46:23 +0000 (21:46 -0400)
diff --git a/doc/todo/Moving_Pages.mdwn b/doc/todo/Moving_Pages.mdwn

index 61f2663e039aaed2a889b4c4890fb3d9b5611896..cf1ce89c6997c1be7ba172b9c9d916da42084d8d 100644 (file)
--- a/doc/todo/Moving_Pages.mdwn
+++ b/doc/todo/Moving_Pages.mdwn
@@ -205,3 +205,9 @@ Cases to consider:
    Update: Meh. It's certianly not ideal; if Bob tries to save the page he
    uploaded the attachment to, he'll get a message about it having been
    deleted/renamed, and he can try to figure out what to do... :-/
+* I don't know if this is a conflict, but it is an important case to consider;
+  you need to make sure that there are no security holes.  You dont want
+  someone to be able to rename something to <code>/etc/passwd</code>.
+  I think it would be enough that you cannot rename to a location outside
+  of srcdir, you cannot rename to a location that you wouldn't be able
+  to edit because it is locked, and you cannot rename to an existing page.
author	http://www.cse.unsw.edu.au/~willu/ <http://www.cse.unsw.edu.au/~willu/@web>
	Fri, 25 Jul 2008 01:46:23 +0000 (21:46 -0400)
committer	Joey Hess <joey@kitenet.net>
	Fri, 25 Jul 2008 01:46:23 +0000 (21:46 -0400)