Comments (4)
Oh wait! I forgot to tell I had to reverted changeset from revision 467
(RemoteFileBuffer: ensure rfile is closed as soon as we're done with it),
because RFB is too much aggressive to closing remote file object. I will
describe it in standalone email soon.
Original comment by [email protected]
on 13 Oct 2010 at 11:15
from pyfilesystem.
I'm in favour of adding something like this, perhaps in the "contrib"
namespace, but there are a lot of unanswered questions. Should it deal with
generating initialisation vectors? HMACs? Key versioning? Should it encrypt
filenames? Not to mention the well-known cryptographic weaknesses of
encrypting on a per-file basis (http://en.wikipedia.org/wiki/EncFS) compared to
a block-level scheme such as TrueCrypt.
We may run the risk of users assuming that their encrypted filesystem is more
secure than it actually is, documentation or no.
None of this is to say "don't do it" but just that there are a lot of tradeoffs
to think about.
Re: the use of RFB, perhaps it should *always* use an RFB in order to allow
seeking etc regardless of the filesystem in question. It could use the same
trick as I recently suggested for working with DAVFS, where it always opens the
file in "r-" mode and wraps its own RFB around it. Just a thought...
Of course, you then run the risk of having unencrypted data lying around in
tempfiles, which the user may not expect.
Original comment by [email protected]
on 15 Oct 2010 at 8:42
from pyfilesystem.
I know about many weaknesses of current implementation. Currently it fills my
requirements, but I agree that should *not* be placed into pyfs at this moment.
It is because implementing vectors etc will change file size, so filesystem
must be able to change meta information on the fly. There are many other
problems.
So take it just as proof of concept - I think encryption like this can be
helpful. Maybe I will implement something better (maybe using GPG internally?)
soon.
So you can close ticket without adding that to trunk, I'm completely OK with
that as I implement that mainly for own purposes.
Original comment by [email protected]
on 15 Oct 2010 at 9:00
from pyfilesystem.
closing this specific ticket, but I think we should certainly keep the general
idea in mind.
Original comment by [email protected]
on 20 Oct 2010 at 7:10
- Changed state: WontFix
from pyfilesystem.
Related Issues (20)
- OSFS: Issue with non-ascii filenames in listdirinfo() HOT 7
- fs.utils.copydir: RuntimeError: maximum recursion depth exceeded in cmp HOT 3
- some paramiko dependant tests fail reproducible HOT 1
- Fixing dokan support discussion... HOT 91
- We need a commiter, I volunteer HOT 9
- Fuse module: much cleanup is needed HOT 10
- rpcfs doesn't work with python 3
- SFTPFS fails to connect. HOT 6
- Segmentation fault: 11 with SFTP HOT 2
- FUSE exposure and statfs HOT 1
- Is the URL approach supported for all file systems? HOT 1
- How do we install this version from pip? HOT 7
- Docs no longer accessible? HOT 2
- dokan unmount failed on windows7 HOT 11
- Why does the size of mounted disk always fixed? HOT 5
- No module expose in last versions ? HOT 2
- Mounted fs could not create new file on Mac
- fs.path.join breaks URLs HOT 1
- How to read tag attribute using getinfo() method.
- Support encoding option for ftpfs
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pyfilesystem.