Re: Use |mprotect()| to secure key data ? / was: Re: Proposal: always handle keys in separate process

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 

On Tue 2016-01-19 19:53:41 -0500, Roland Mainz wrote:
> What about the idea of storing "valuable" data in unlinked temp files
> and |mmap()| then only on demand ? That would keep them out of the
> claws of *other* users (obviously same user can use /proc/$pid/fd/$fd
> to |open()| such files, but then the same user could just attach
> gdb/dbx and dissect the ssh/sshd/ssh_secure_storage processes and even
> inject random code) ...

depending on the filesystem used, this could mean writing this sensitive
data to the underlying storage medium, which sounds like a worse failure
than anything this proposal would fix.

     --dkg
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux