Return-Path: Delivered-To: apmail-couchdb-dev-archive@www.apache.org Received: (qmail 99724 invoked from network); 4 Feb 2010 00:37:28 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 4 Feb 2010 00:37:28 -0000 Received: (qmail 81694 invoked by uid 500); 4 Feb 2010 00:37:27 -0000 Delivered-To: apmail-couchdb-dev-archive@couchdb.apache.org Received: (qmail 81612 invoked by uid 500); 4 Feb 2010 00:37:27 -0000 Mailing-List: contact dev-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@couchdb.apache.org Delivered-To: mailing list dev@couchdb.apache.org Received: (qmail 81602 invoked by uid 99); 4 Feb 2010 00:37:27 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 04 Feb 2010 00:37:27 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of jchris@gmail.com designates 209.85.222.182 as permitted sender) Received: from [209.85.222.182] (HELO mail-pz0-f182.google.com) (209.85.222.182) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 04 Feb 2010 00:37:17 +0000 Received: by pzk12 with SMTP id 12so2152257pzk.13 for ; Wed, 03 Feb 2010 16:36:56 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:message-id:subject:from:to :content-type; bh=znyCidcK4aBOWh1T8fttD6q4B83UCp3uZ3GoIWVubXE=; b=f/CHm2nuVRiRuCk49Qi+jdp8Aalervz49LZ2/+7i4q09Rz376MLIbTPi/rSYrpX6OG FoifOGmQfQwvQCMV50DAyEEqkJbggdmHOzzcoi5yS66A3fKLUVcDUDbVjfvV9o7VzeJk PlzrjGC0iZ0pD3LD4A1Kdxp0vE5wrQJIwQ1jw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type; b=Qvn5OBDGtWJ3QT3UzOZk0DTWX8zx7JOKmF9o3LgSCVA0Toinkf3gXejrqw8WqlRJdu DsLaYhSVhXTz6JWHCntvZLbJhVku6Y5yNmV+I0dq9vWfRyX3wacZwg3fvu71aZmJhRP2 8e9rqWVri8S1aXd8Xyyqpg4t/IsaNYUQKn1SM= MIME-Version: 1.0 Sender: jchris@gmail.com Received: by 10.143.26.6 with SMTP id d6mr224263wfj.223.1265243816362; Wed, 03 Feb 2010 16:36:56 -0800 (PST) In-Reply-To: <20100203213528.GA10725@uk.tiscali.com> References: <20100203212426.GA10515@uk.tiscali.com> <20100203213528.GA10725@uk.tiscali.com> Date: Wed, 3 Feb 2010 16:36:56 -0800 X-Google-Sender-Auth: 6739816833744cea Message-ID: Subject: Re: DB ACLs (was Re: 0.11 Release / Feature Freeze for 1.0) From: Chris Anderson To: dev@couchdb.apache.org Content-Type: text/plain; charset=ISO-8859-1 X-Virus-Checked: Checked by ClamAV on apache.org On Wed, Feb 3, 2010 at 1:35 PM, Brian Candler wrote: > On Wed, Feb 03, 2010 at 09:24:26PM +0000, Brian Candler wrote: >> > > (9) The _users db itself is world-readable (showing not only who your users >> > > are, but their password hashes). Highly undesirable. >> > >> > I actually consider this a feature. We'd like to get some stronger >> > password hashing (see the bcrypt threads) which should help with the >> > password parts. > > Actually, passwords aren't even the issue. Just revealing the *usernames* of > all the users on the system is the problem. > > For example, if I were a competitor to couch.io, I would be very happy to > download a list of customers I should be poaching :-) In couch.io each customer gets an entire couchdb server, so no worries about that. Chris -- Chris Anderson http://jchrisa.net http://couch.io