[29] in Coldmud discussion meeting

root meeting help first first in chain previous in chain previous next last

Re: more ponderings

daemon@ATHENA.MIT.EDU (Tue Nov 16 16:45:24 1993 )

To: Lynx <BRANDON@cc.usu.edu>
Cc: coldstuff@MIT.EDU
In-Reply-To: Your message of Mon, 15 Nov 93 22:49:39 -0600.
             <01H5D0FB8I5AANHKWW@cc.usu.edu> 
Date: Tue, 16 Nov 93 16:28:25 EST
From: Greg Hudson <ghudson@MIT.EDU>


> Now this next suggestion is getting almost into a security hole, but
> hey.  What about creating a write_file() for gods, which has a
> builtin max of bytes that they can write, modifyable only by the
> arch (programmer1)...  this would be very hard to keep track of, but
> it would make it much easier for the other gods to deal with disk
> based files, rather than having to create objects to hold all the
> text.  Also with help, I would love to have a disk based help setup,
> where $has_help simply echo's the files or whatever (so you dont
> have to load mongo objects into mem every time somebody asks for
> help on something).

First, Coldmud does not know anything about "gods" or "programmer1".
The only concept of security it has is functions limited to $sys,
which allows the db to implement all necessary security.

However, when making design decisions from the server, I assume that
all in-db security and accounting is defeatable, and therefore do not
allow scribbling on the file system.

Second, off-line files are not a good solution in general.
echo_file() is there because Coolmud has it; I think it's reasonable
when restricted to, say, the welcome file, but it's just not terribly
useful apart from that.  There's no reason to use off-line files
instead of the database for storing information.

If you're worried about the large help object problem, simply
distribute the database over multiple objects somehow.  This is much
cleaner than introducing access to the file system.

--GBH