Uploaded image for project: 'Support'
  1. Support
  2. SUPPORT-136

SoftHSM creates files with sensitive material in insecure way

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: SoftHSM 1.3.6
    • Fix Version/s: SoftHSM 2.x develop
    • Component/s: None
    • Labels:
      None

      Description

      See http://bugs.debian.org/752092

      > the softshm-keyconv tool creates its output files with default access
      > rights, i.e. group and aworld readable on a default Debian setup.
      >
      > I believe the correct thing would be to instead create files readable
      > only by the user invoking the tool, or inherit access rights from the
      > input file of the conversion process.

        Attachments

          Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. SOFTHSM-101 Incorrect default file permissions when using --export or --optimize

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

            Activity

              People

              Assignee:
              rickard Rickard Bellgrim
              Reporter:
              oerdnj Ondřej Surý
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: