[dojo-contributors] "core dojo", packaging, and the build system

Sandro Magi smagi at naasking.homeip.net
Wed Apr 5 19:34:15 EDT 2006


Such a setup is still just as vulnerable. I would rather have the
control in the dojo array anyway, because I could then specify my own
server farm.

Sandro

Jesse Kuhnert wrote:
> Ouch, I don't think I meant for dojo to try managing the hosts...I was
> imagining some sort of dojo sponsored thing where relationships are
> built with trusted companies/hosts and the routing is done through,
> well..a router/dns server somewhere.
> 
> On 4/5/06, *Sandro Magi* <smagi at naasking.homeip.net
> <mailto:smagi at naasking.homeip.net>> wrote:
> 
>     An array of hosts with a random selection stored in dojo.js could be
>     used to distribute the load across any number of servers. Whether this
>     is actually a win depends on how scripts are cached by the browser. If
>     the browsers are good, then distributing the scripts in this manner
>     could very well *degrade* performance.
> 
>     Furthermore, this is potentially a security nightmare. Subverting any
>     one of the hosting servers means an attacker could potentially steal
>     information from any web applications which use dojo this way.
> 
>     You can close this vulnerability by storing secure hashes of the
>     referenced scripts in the root dojo.js file. When the script is fetched,
>     the computed hash must match the stored one to ensure that the script
>     hasn't been compromised. If it doesn't match, the next server could be
>     tried. I can't think how else you can ensure the app's security.
> 
>     Sandro
> 



More information about the dojo-contributors mailing list