Opened at 2012-04-14T21:11:37Z
Last modified at 2016-04-28T07:44:45Z
#1720 closed defect
privacy leak — at Initial Version
| Reported by: | jg71 | Owned by: | davidsarah |
|---|---|---|---|
| Priority: | normal | Milestone: | 1.12.0 |
| Component: | code-frontend-web | Version: | 1.9.1 |
| Keywords: | privacy anonymity easy | Cc: | |
| Launchpad Bug: |
Description
when a client/node is created, in tahoe.cfg "web.static = public_html" is enabled by default, but public_html is not created. Thus, surfing to http://localhost:3456/static/ leaks
a) the absolute path of where web.static is expected to be b) the python version used c) maybe which OS is used
solution: don't enable web.static by default, or create public_html directory during client/node creation
Note: See
TracTickets for help on using
tickets.
