[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Bash security issue
|
From: |
Linda Walsh |
|
Subject: |
Re: Bash security issue |
|
Date: |
Thu, 25 Sep 2014 12:15:27 -0700 |
|
User-agent: |
Thunderbird |
Eric Blake wrote:
And _that's_ what I want changed, by proposing that bash use 'f()=...'
rather than 'f=() {...' as the magic it uses for exporting functions
from parent to child.
---
That could still be put in the environment (though not as easily w/o
special code).
Not that it is any more secure but how about replacing '()' with
'ƒ(8-byte-hex-sig)'
that is some crypto-sig of the function? If it matches the function's
sig, then function
would be read in. Of course like any crypto function, it's crackable,
but to toss
in enough bits to really forestall that, would be prohibitive unless
done on a
whole 'block' of imported info, i.e.
For more security, one could use cryptographic signing of a sequence of
BASH keys with the public key left in the environment and private key left
in a trusted kernel tpm keyring...(god that sounds painful -- but would like
by the method to really tie this down if that was really needed). But
script
isn't supposed to be the last line defense against launching the missiles.
- Re: Bash security issue, Eric Blake, 2014/09/25
- Re: Bash security issue,
Linda Walsh <=
- Re: Bash security issue, Eric Blake, 2014/09/25
- Re: Bash security issue, Linda Walsh, 2014/09/25
- Re: Bash security issue, lolilolicon, 2014/09/26
- Re: Bash security issue, Zack Weinberg, 2014/09/26
- Re: Bash security issue, Eric Blake, 2014/09/26
- Re: Bash security issue, Steve Simmons, 2014/09/26
- Re: Bash security issue, Greg Wooledge, 2014/09/26
- Re: Bash security issue, Paul Smith, 2014/09/26
- Re: Bash security issue, Chet Ramey, 2014/09/27
- Re: Bash security issue, Eric Blake, 2014/09/27