Debian Bug report logs - #357118
debconf: exposes passwords in debug messages

version graph

Package: debconf; Maintainer for debconf is Debconf Developers <debconf-devel@lists.alioth.debian.org>; Source for debconf is src:debconf (PTS, buildd, popcon).

Reported by: Colin Watson <cjwatson@debian.org>

Date: Wed, 15 Mar 2006 19:03:22 UTC

Severity: normal

Tags: patch

Found in version debconf/1.4.72

Reply or subscribe to this bug.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, Joey Hess <joeyh@debian.org>:
Bug#357118; Package debconf. (full text, mbox, link).

Acknowledgement sent to Colin Watson <cjwatson@debian.org>:
New Bug report received and forwarded. Copy sent to Joey Hess <joeyh@debian.org>. (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Colin Watson <cjwatson@debian.org>
To: submit@bugs.debian.org
Subject: debconf: exposes passwords in debug messages
Date: Wed, 15 Mar 2006 18:52:16 +0000
[Message part 1 (text/plain, inline)]
Package: debconf
Version: 1.4.72
Severity: normal
Tags: patch

debconf exposes the answers to password questions in its debug
information. This is rather annoying when writing installer-related
applications based on debconf, as it means that you can't safely ask for
debugging logs without having to get people to strip passwords out of
them first; today I had a normally extremely security-conscious
developer send me his password for his home systems by mistake. I
suspect that quite a lot of passwords are lying around in attachments to
bugs in various bug tracking systems, unnoticed by the senders.

The attached patch attempts to hide passwords even when the 'developer'
and/or 'db' debug modes are set. It's pretty ugly in places, though, so
I haven't just checked it in. What do you think?

Cheers,

-- 
Colin Watson                                       [cjwatson@debian.org]

[debug-hide-passwords.diff (text/plain, attachment)]

Information forwarded to debian-bugs-dist@lists.debian.org:
Bug#357118; Package debconf. (full text, mbox, link).

Acknowledgement sent to Joey Hess <joeyh@debian.org>:
Extra info received and forwarded to list. (full text, mbox, link).

Message #10 received at 357118@bugs.debian.org (full text, mbox, reply):

From: Joey Hess <joeyh@debian.org>
To: Colin Watson <cjwatson@debian.org>, 357118@bugs.debian.org
Subject: Re: Bug#357118: debconf: exposes passwords in debug messages
Date: Tue, 18 Apr 2006 17:24:30 -0400
[Message part 1 (text/plain, inline)]
Colin Watson wrote:
> -	debug developer => "<-- $_";
> +	# Nasty hack to stop SET passwords showing up in debug messages.
> +	if (/^set /i) {

I'm afraid I lost it here. Too ugly to use IMHO.

I think it might be best to keep this analagous with strace or gdb logs, and
just require common-sense stripping of sensative info before publishing.

-- 
see shy jo

[signature.asc (application/pgp-signature, inline)]

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Sun Jan 7 12:04:43 2018; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.