[dojo-contributors] "core dojo", packaging, and the build system
smagi at naasking.homeip.net
Wed Apr 5 19:34:15 EDT 2006
Such a setup is still just as vulnerable. I would rather have the
control in the dojo array anyway, because I could then specify my own
Jesse Kuhnert wrote:
> Ouch, I don't think I meant for dojo to try managing the hosts...I was
> imagining some sort of dojo sponsored thing where relationships are
> built with trusted companies/hosts and the routing is done through,
> well..a router/dns server somewhere.
> On 4/5/06, *Sandro Magi* <smagi at naasking.homeip.net
> <mailto:smagi at naasking.homeip.net>> wrote:
> An array of hosts with a random selection stored in dojo.js could be
> used to distribute the load across any number of servers. Whether this
> is actually a win depends on how scripts are cached by the browser. If
> the browsers are good, then distributing the scripts in this manner
> could very well *degrade* performance.
> Furthermore, this is potentially a security nightmare. Subverting any
> one of the hosting servers means an attacker could potentially steal
> information from any web applications which use dojo this way.
> You can close this vulnerability by storing secure hashes of the
> referenced scripts in the root dojo.js file. When the script is fetched,
> the computed hash must match the stored one to ensure that the script
> hasn't been compromised. If it doesn't match, the next server could be
> tried. I can't think how else you can ensure the app's security.
More information about the dojo-contributors