X-Git-Url: http://git.vanrenterghem.biz/git.ikiwiki.info.git/blobdiff_plain/d4c7df992e4bac39b68a637cf541c351dce845f9..6317ee847be90291b93a43507c182a7834bf0f8d:/doc/setup/byhand/discussion.mdwn?ds=inline diff --git a/doc/setup/byhand/discussion.mdwn b/doc/setup/byhand/discussion.mdwn index 4d009f20d..deb79a8db 100644 --- a/doc/setup/byhand/discussion.mdwn +++ b/doc/setup/byhand/discussion.mdwn @@ -13,3 +13,10 @@ The page says *"Note that this file should **not** be put in your wiki's directo One possible thing is security: Is it just a precaution or would anyone with "write" access to wiki be able to replace the file? --[[Martian]] + +> Anyone with the ability to delete/replace attachments via the web UI, or the ability +> to commit directly to the VCS, would be able to replace it. That breaks ikiwiki's +> security model, because replacing the setup file is sufficient to achieve +> arbitrary code execution as the user running the CGI and VCS hooks. --[[smcv]] + +>> Thanks. After all found it here: [[security]]. Now I wonder if I always use a file from the master branch, while limiting users to staging, it might fly...