Re: Nautilus MASSIVE security fail?
@MG&TL - that's the kind of answer I was looking for, I'll deal with that in a second. Let me first deal with some of the people who ironically think I'm an idiot.
@haqking - you already agree with me that privacy and security are related, depending on context. But again I dispute "someone other than you has access to the thumbnails then security has already been compromised and then in addition your privacy also." Different levels of encryption exist. You might get my PC. You might be able to decrypt my home folder relatively easily. You still won't be able to decrypt my TrueCrypt volume - it has a higher level of encryption. So why would I store the thumbnails from the that volume in my home dir - that is plain and simply a leak from a higher security level to a lower one.
@snowpine - I agree, but caching thumbnails is a bit different from saving files. If I load a document from secure storage, modify it and save it, where does it default the file save directory? Does it save a copy in ~me? I hope not!
@SeanBlader - my house is also locked. The difference is, if someone breaks in, steals my computer, they cannot read my documents without a lot of effort. More importantly, they cannot read the subset of those documents that I consider private without a ENORMOUS amount more effort - probably more than anyone apart from a government agency could bring to bear. You have some idea how powerful GPUs are at encryption cracking, but you don't seem to recognise the massive difference in degree between hacking open a home folder protected by an 8 char password and hacking open a TC volume protected by a 40 char one. I'm afraid the actual facts are against you on this one - it simply isn't the case that just because some encryption is easy to crack, that all of it is equally easy, which is the implication of your assertion.
Perhaps I annoyed people by calling this a 'massive' security fail, although at least I got your attention. But really folks, in security circles, a mechanism that leaks some information from one security level to another, lower one is generally considered to have a problem. I still have no reason to believe this is wrong.
What I do have, thanks to MG&TL, is finally an argument in favour of putting thumbnails in ~me that is more than "that's just the way we've always done it, deal with it"
>>1) It's more difficult to code for. If you've already got to figure out if you've got permissions on the drive to store thumbnails, whether the drive has the capacity or bandwidth required to store thumbnails (think floppy drives, one-write CDs, network shares), and whether the drive is nearly full or not, then thumbnailing is more of a headache.
Yes, I completely agree with that.
>>2) It could slow down I/O traffic on old or network storage.
Yes, it could, although can it work the other way around? Having local thumbnails to old / network storage could slow you down, like the old windows explorer disappeared network share problem? I'm not sure.
>>3) Dumping thumbnails in the directory they're in leaves rubbish all over the places you view in a file manager.
I'm less convinced about this, because you're going to get rubbish somewhere - either one copy on the network share, or every user has a copy, which is inherently more wasteful and less secure.
Ok, in the light of that, it seems to me that the problem is that Nautilus thumbnailing is not sufficiently granular. How about it thumbnails everything that is mounted below /home/you in /home/you/.thumbnails but it only caches thumbnails from other mountpoints to RAM?
Tags for this Thread