|
Grex > Coop12 > #57: Proposal: Users shall be able to withdraw their text | |
|
| Author |
Message |
| 25 new of 168 responses total. |
janc
|
|
response 129 of 168:
| 
Nov 25 05:41 UTC 2001 |
Right now it does
chmod(file, read-writable)
fp= fopen(file,"r+");
chmod(file, only-readable)
and then goes on to do it's reading and writing. The window of vulnerability
is between the two chmods, and it's a pretty short window. I can't lock it
until after I've opened it, but I suppose I could open it read-only, apply
an advisory lock, chmod it, open it read-write, chmod-it and close the
read-only file handle. Hardly seems worth the effort though. Not sure if
it would work with all the different locking libraries we support.
|
jp2
|
|
response 130 of 168:
|
Nov 25 06:15 UTC 2001 |
This response has been erased.
|
cmcgee
|
|
response 131 of 168:
|
Nov 25 16:06 UTC 2001 |
I voted to close the scribble log t everyone but staff. I would vote
against getting rid of the scribble command entirely.
|
janc
|
|
response 132 of 168:
|
Nov 25 17:02 UTC 2001 |
Re #130: because backtalk does not run as superuser.
|
devnull
|
|
response 133 of 168:
|
Nov 25 22:51 UTC 2001 |
Re #132: But you could call a suid program.
|
devnull
|
|
response 134 of 168:
|
Nov 25 22:52 UTC 2001 |
Re #129: I suspect that if you decide you care, the fix might be to have
item frozenness marked by something other than unix permissions.
|
janc
|
|
response 135 of 168:
|
Nov 26 04:20 UTC 2001 |
I agree with the last, except that I have to maintain compatibility with
Picospan, which is essentially inalterable.
|
albaugh
|
|
response 136 of 168:
|
Nov 26 14:57 UTC 2001 |
Is mdw lurking on this, or will/can he weigh in?
|
remmers
|
|
response 137 of 168:
|
Nov 27 17:04 UTC 2001 |
Even if Picospan is unalterable, couldn't one make whatever method
backtalk uses to expurgate/scribble frozen items available to telnet
and dialup users as well? Code it as a standalone suid program.
|
janc
|
|
response 138 of 168:
|
Nov 28 05:45 UTC 2001 |
Something like this will probably happen.
|
remmers
|
|
response 139 of 168:
|
Nov 29 11:55 UTC 2001 |
Today is the last day to vote on the proposal. The polls close
Thursday November 29 at midnight EST.
|
remmers
|
|
response 140 of 168:
|
Nov 30 05:14 UTC 2001 |
Voting results: 41 out of 94 eligible members voted.
Yes 25
No 16
The proposal passed.
(The unoffical nonmember tally: 46 yes, 5 no.)
|
gelinas
|
|
response 141 of 168:
|
Nov 30 05:17 UTC 2001 |
Yes!
Thank you for the report, John.
|
aruba
|
|
response 142 of 168:
|
Nov 30 14:38 UTC 2001 |
Thanks John.
|
janc
|
|
response 143 of 168:
|
Nov 30 16:59 UTC 2001 |
chmod 600 /bbs/censored
Amazing how much it took to get 23 characters typed.
|
gelinas
|
|
response 144 of 168:
|
Nov 30 17:14 UTC 2001 |
Can we do the same for /bbs/censored.old.gz ?
|
jp2
|
|
response 145 of 168:
|
Nov 30 17:23 UTC 2001 |
This response has been erased.
|
janc
|
|
response 146 of 168:
|
Nov 30 20:22 UTC 2001 |
Re 144: Yes.
|
albaugh
|
|
response 147 of 168:
|
Nov 30 21:33 UTC 2001 |
Shucks, why not chmod 700 ? ;-)
|
jmsaul
|
|
response 148 of 168:
|
Dec 1 18:22 UTC 2001 |
Congratulations!
|
albaugh
|
|
response 149 of 168:
|
Dec 1 22:05 UTC 2001 |
What does the passing of this motion do to Backtalk's function:
View hidden response.
???
|
gelinas
|
|
response 150 of 168:
|
Dec 2 04:21 UTC 2001 |
(Welcome back, Joe. :)
|
janc
|
|
response 151 of 168:
|
Dec 2 04:29 UTC 2001 |
Hi Joe.
Backtalk and Picospan have two degrees of erasure. Their names for them
differ:
PICOSPAN BACKTALK
expurgate hide Don't display the response by default
scribble erase Erase the response
Expurgate was originally called 'censor' but the command name was mostly
changed in the early days of Grex, though the old one leaks through here
and there.
The discussion here has been entirely about the scribble/erase commands.
They now remove text in such a way that nobody but staff can ever see
them again.
The expurgate/censor/hide command has always been just a way to flag the
response to say "you can see this if you want to, but you probably don't
want to". Backtalk even lets you post a response in a hidden state.
Backtalk's "view hidden response" link only appears for "hidden"
responses, not erased responses. It has never been possible to view
erased responses via Backtalk.
|
albaugh
|
|
response 152 of 168:
|
Dec 3 23:04 UTC 2001 |
Thanks!
|
mwg
|
|
response 153 of 168:
|
Dec 14 03:29 UTC 2001 |
And as predicted, not satisfied with a result, the question was beaten
until it won because people realized that it was give in or vote against
it forever. It works for government, so why not here?
|