#nixos-security on 2019-12-04

2019-04-23 19:29 gchristensen changed the topic of #nixos-security to: Vulnerability Roundup Issues: https://github.com/NixOS/nixpkgs/issues?utf8=%E2%9C%93&q=is%3Aissue+is%3Aopen+Vulnerability+roundup + https://broken.sh

00:17 swapgs has quit [Ping timeout: 276 seconds]

00:19 swapgs has joined #nixos-security

00:19 swapgs has quit [Changing host]

01:33 ris has quit [Ping timeout: 268 seconds]

02:24 hmpffff has quit [Quit: nchrrrr…]

03:41 justanotheruser has joined #nixos-security

03:41 justanotheruser is now known as Guest9650

05:02 Guest9650 has quit [Quit: WeeChat 2.6]

05:03 justanotheruser has joined #nixos-security

05:20 justan0theruser has joined #nixos-security

05:20 justanotheruser has quit [Ping timeout: 268 seconds]

06:56 tilpner has quit [Quit: tilpner]

07:01 tilpner has joined #nixos-security

08:23 alexbakker has quit [*.net *.split]

08:23 spacekookie has quit [*.net *.split]

08:23 Foxboron has quit [*.net *.split]

08:24 Foxboron has joined #nixos-security

08:24 spacekookie has joined #nixos-security

08:24 alexbakker has joined #nixos-security

08:35 ckauhaus has joined #nixos-security

10:04 hmpffff has joined #nixos-security

10:23 hmpffff_ has joined #nixos-security

10:26 hmpffff has quit [Ping timeout: 276 seconds]

14:04 samueldr has quit [*.net *.split]

14:09 samueldr has joined #nixos-security

14:13 samueldr has quit [*.net *.split]

14:19 samueldr has joined #nixos-security

15:48 Bruno[m]1 has joined #nixos-security

15:53 <Bruno[m]1> I have a dumb question. Is it a security issue if a backup generates a file with world readable permissions? The user has to create the parent directory, which shouldn't be world readable but the user might forget to set it.

19:00 <ckauhaus> Bruno[m]1: Don't think so

19:01 <ckauhaus> managing permissions is generally up to the usre

19:02 <gchristensen> Bruno[m]1: can you describe more?

19:03 <Bruno[m]1> ckauhaus: thanks

19:04 <gchristensen> I disagree fwiw, so I'd like to know more about the context

19:04 <gchristensen> things should fail safe

19:04 <ckauhaus> heh

19:06 <Bruno[m]1> gchristensen: if I set `services.bitwarden_rs = /opt/bitwarden-backup`, /opt/bitwarden-backup will contain a backup of the sqlite database which is world readable. the password in that databse will be encrypted but there's still private keys in there (which are most likely protected with the users' passwords).

19:06 <Bruno[m]1> -rw-r--r-- 1 bitwarden_rs bitwarden_rs 139264 4 déc 13:30 db.sqlite3

19:06 <gchristensen> ah.

19:07 <gchristensen> in that case no, I would expect the user to take care since they explicitly specified where on disk

19:07 <Bruno[m]1> but wouldn't it be safer to use umask or something while creating the backup?

19:08 <Bruno[m]1> I don't think there would be a downside to it

19:09 <gchristensen> well we could, and amke an option to make the umask configurable

19:09 <Bruno[m]1> ok thanks.

19:10 <gchristensen> if the default configuration was insecure it would be a problem

19:10 <Bruno[m]1> what do you mean?

19:10 <Bruno[m]1> if the default umask would be wrong?

19:10 <gchristensen> na

19:10 <gchristensen> if it was defaulting to write to /opt/bitwarded-backup and that was world-readable, that is a bug

19:11 <gchristensen> imo

19:11 <gchristensen> but since it is a user-controlled location... less sure

19:11 ris has joined #nixos-security

19:12 infinisil has quit [Quit: Configuring ZNC, sorry for the joins/quits!]

19:13 <Bruno[m]1> gotcha. thanks

19:13 infinisil has joined #nixos-security

19:14 <gchristensen> ckauhaus: do you think that makes sense?

19:36 <ckauhaus> I do personally not like programs that mess around with permissions in user-controlled locations

19:36 <ckauhaus> but this is a matter of habit and personal taste of course

19:37 <gchristensen> +1

19:57 justan0theruser has quit [Ping timeout: 276 seconds]

20:10 justan0theruser has joined #nixos-security

20:16 justan0theruser has quit [Ping timeout: 265 seconds]

20:31 <Bruno[m]1> ssh-keygen will generate a (chmod 600) private key even if the .ssh directory already has the right permissions.

20:32 <Bruno[m]1> but those guys don't mess around

20:32 <Bruno[m]1> personnaly I would expect a "backup system" to be extra careful about security. just my personal taste too.

20:34 <Bruno[m]1> the "backup system" being only a shell script in this case.

20:35 justan0theruser has joined #nixos-security

21:30 hmpffff_ has quit [Quit: Bye…]

23:14 swapgs has quit [Ping timeout: 246 seconds]

23:18 swapgs has joined #nixos-security

23:18 swapgs has quit [Changing host]

23:18 swapgs has joined #nixos-security