[Foundation-l] Internal wiki(s) and confidential committee communications

Brion Vibber brion at pobox.com
Sun Feb 5 09:24:49 UTC 2006


Erik Moeller wrote:
> Brion-
> 
> you raise excellent technical points. Of course, there are also security
> issues with the existing implementation, such as file uploads, which are
> openly accessible (don't know if they have been specially secured on
> internal).

There's been protection for uploads on private wikis for quite some time, where
configured.

> The only remaining question then is whether it is easier and more
> practical to have multiple confidential places (from which information
> will have to be aggregated), or to modify our software to allow multiple
> levels of access in a single installation. I would argue that a gradual
> implementation of the latter strategy is more promising and scalable in
> the long run. However, if you say that it cannot be done, it is pretty
> much a no-go.

Theoretically it can be done, and we might even have good reasons to think about
it and plan for it, but I would strongly caution against assuming it will be
there anytime soon.

Using separate databases for drastically different privilege levels is here now
and it's as secure as we're likely to see on our shared servers.

-- brion vibber (brion @ pobox.com)

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 249 bytes
Desc: OpenPGP digital signature
Url : http://lists.wikimedia.org/pipermail/foundation-l/attachments/20060205/6c59d429/attachment-0001.pgp 


More information about the foundation-l mailing list