insecure keys.dat permissions #258
Labels
No Label
bug
build
dependencies
developers
documentation
duplicate
enhancement
formatting
invalid
legal
mobile
obsolete
packaging
performance
protocol
question
refactoring
regression
security
test
translation
usability
wontfix
No Milestone
No project
No Assignees
1 Participants
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: Bitmessage/PyBitmessage-2024-12-14#258
Loading…
Reference in New Issue
Block a user
No description provided.
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Currently, keys.dat is created with default permissions on Linux, which often have insecure 644 permissions that are unsatisfactory for keyfiles. I don't know about OSX nor Windows, but I assume they have the same issue. The keys.dat file should be created with a 077 umask.
Ah, yes, and messages.dat needs the same treatment.