From: BuddyFriendGuy <bfggeneral@gmail.com>
Date: Wed, 8 Apr 2015 06:29:28 +0000 (+0000)
Subject: added conclusion
X-Git-Url: https://git.rm.cloudns.org/?a=commitdiff_plain;h=0cfef09e2bc1dcdf6708a1754ae7d3b2f4e8d927;p=xonotic%2Fxonotic.wiki.git

added conclusion
---

diff --git a/privacy-and-security.markdown b/privacy-and-security.markdown
index 7b171ca..e8fa43a 100644
--- a/privacy-and-security.markdown
+++ b/privacy-and-security.markdown
@@ -3,11 +3,13 @@ Privacy and Security
 Xonitic runs on top of the DarkPlaces Engine. When connecting to a server, the client may download and run QuakeC code for the gameplay. The security policies are:
 
 -   QC code can't create any symlinks.
--   QC code can read anything below ~/.xonotic/*/ including stuff pointed-to by symlinks (which, as the game can't create any, would have to have been placed by the user). It can't read your private key in ~/.xonotic/*.d0si.
--   QC code can write anything below ~/.xonotic/data including your config.
+-   QC code can read anything below ~/.xonotic/*/ including stuff pointed-to by symlinks (which, as the game can't create any, would have to have been placed by the user). It cannot read user's private key in ~/.xonotic/*.d0si.
+-   QC code can write anything below ~/.xonotic/data including user's config.
 -   Paths are properly sanitized according to this policy.
 -   QC code can send arbitrary data back anywhere (by using the "connect" command).
 
+Therefore, do not put any files you don't want to expose under ~/.xonotic
+
 Reference
 ---------
 divVerent's [answer](http://forums.xonotic.org/showthread.php?tid=5427&pid=71595#pid71595) in the forum
\ No newline at end of file