desktop-packages team mailing list archive

Thread
Date

[Bug 714908] Re: gnome-keyring reads unsafe SSH keys

To: desktop-packages@xxxxxxxxxxxxxxxxxxx
From: dino99 <714908@xxxxxxxxxxxxxxxxxx>
Date: Sat, 12 Sep 2015 16:12:38 -0000
Reply-to: Bug 714908 <714908@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

expired version, and openssl has been widely reworked lately.

** Changed in: gnome-keyring (Ubuntu)
       Status: Triaged => Invalid

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to gnome-keyring in Ubuntu.
https://bugs.launchpad.net/bugs/714908

Title:
  gnome-keyring reads unsafe SSH keys

Status in GNOME Keyring:
  New
Status in gnome-keyring package in Ubuntu:
  Invalid
Status in gnome-keyring source package in Natty:
  Invalid

Bug description:
  Binary package hint: gnome-keyring

  OpenSSH enforces that one's keys must be mode 0700 so that unsafe
  permissions do not go unnoticed. gnome-keyring should perform this
  check as well. It looks like pkcs11/ssh-store/gkm-ssh-private-key.c
  gkm_ssh_private_key_parse() is the place to do it, or possibly pkcs11
  /ssh-store/gkm-ssh-module.c file_load() since it checks some aspects
  of the files already.

  ProblemType: Bug
  DistroRelease: Ubuntu 11.04
  Package: gnome-keyring 2.92.92.is.2.32.1-0ubuntu2
  ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37
  Uname: Linux 2.6.37-12-generic x86_64
  Architecture: amd64
  Date: Mon Feb  7 15:23:20 2011
  ProcEnviron:
   LANGUAGE=en_US:en
   PATH=(custom, user)
   LANG=en_US.UTF-8
   LC_MESSAGES=en_US.utf8
   SHELL=/bin/bash
  SourcePackage: gnome-keyring

To manage notifications about this bug go to:
https://bugs.launchpad.net/gnome-keyring/+bug/714908/+subscriptions