Re: [Bacula-users] Bacula security

Subject:

From:

Martin Simmons <martin AT lispworks DOT com>

To:

bacula-users AT lists.sourceforge DOT net

Date:

Tue, 2 Jul 2013 16:03:03 +0100

>>>>> On Tue, 02 Jul 2013 08:32:43 -0400, Josh Fisher said:
> 
>             Using PKI data encryption together with the ability to 
> disable scripts would allow for fairly safe restores, since the FD's 
> private key would be needed to alter any files being restored and a 
> compromised Dir could not run commands to alter the FD's private key 
> even when FD was running as root.

Unfortunately, I think that still isn't secure because the FD doesn't enforce
encryption and signing is only checked after restoring the file (too late).
Also, it doesn't have a way to check that the file is restored to its original
location.  Finally, I think file attributes are not encrypted or signed so a
malicious restore could change the permissions on a file even if it couldn't
read the data.

__Martin

------------------------------------------------------------------------------
This SF.net email is sponsored by Windows:

Build for Windows Store.

http://p.sf.net/sfu/windows-dev2dev
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:

[Bacula-users] Bacula vchanger USB - Device is not open, arnaldojsousa

Next by Date:

Re: [Bacula-users] Intervention needed, asking for tape not in library, Kevin B. Zimmerman

Previous by Thread:

Re: [Bacula-users] Bacula security, Kern Sibbald

Next by Thread:

Re: [Bacula-users] Bacula security, Josh Fisher

Indexes:

[Date] [Thread] [Top] [All Lists]