[Desktop-packages] [Bug 714908] Re: gnome-keyring reads unsafe SSH keys
** Changed in: gnome-keyring Status: Confirmed => Fix Released -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to gnome-keyring in Ubuntu. https://bugs.launchpad.net/bugs/714908 Title: gnome-keyring reads unsafe SSH keys Status in GNOME Keyring: Fix Released Status in gnome-keyring package in Ubuntu: Invalid Status in gnome-keyring source package in Natty: Invalid Bug description: Binary package hint: gnome-keyring OpenSSH enforces that one's keys must be mode 0700 so that unsafe permissions do not go unnoticed. gnome-keyring should perform this check as well. It looks like pkcs11/ssh-store/gkm-ssh-private-key.c gkm_ssh_private_key_parse() is the place to do it, or possibly pkcs11 /ssh-store/gkm-ssh-module.c file_load() since it checks some aspects of the files already. ProblemType: Bug DistroRelease: Ubuntu 11.04 Package: gnome-keyring 2.92.92.is.2.32.1-0ubuntu2 ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37 Uname: Linux 2.6.37-12-generic x86_64 Architecture: amd64 Date: Mon Feb 7 15:23:20 2011 ProcEnviron: LANGUAGE=en_US:en PATH=(custom, user) LANG=en_US.UTF-8 LC_MESSAGES=en_US.utf8 SHELL=/bin/bash SourcePackage: gnome-keyring To manage notifications about this bug go to: https://bugs.launchpad.net/gnome-keyring/+bug/714908/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
[Desktop-packages] [Bug 714908] Re: gnome-keyring reads unsafe SSH keys
** Changed in: gnome-keyring Status: New => Confirmed -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to gnome-keyring in Ubuntu. https://bugs.launchpad.net/bugs/714908 Title: gnome-keyring reads unsafe SSH keys Status in GNOME Keyring: Confirmed Status in gnome-keyring package in Ubuntu: Invalid Status in gnome-keyring source package in Natty: Invalid Bug description: Binary package hint: gnome-keyring OpenSSH enforces that one's keys must be mode 0700 so that unsafe permissions do not go unnoticed. gnome-keyring should perform this check as well. It looks like pkcs11/ssh-store/gkm-ssh-private-key.c gkm_ssh_private_key_parse() is the place to do it, or possibly pkcs11 /ssh-store/gkm-ssh-module.c file_load() since it checks some aspects of the files already. ProblemType: Bug DistroRelease: Ubuntu 11.04 Package: gnome-keyring 2.92.92.is.2.32.1-0ubuntu2 ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37 Uname: Linux 2.6.37-12-generic x86_64 Architecture: amd64 Date: Mon Feb 7 15:23:20 2011 ProcEnviron: LANGUAGE=en_US:en PATH=(custom, user) LANG=en_US.UTF-8 LC_MESSAGES=en_US.utf8 SHELL=/bin/bash SourcePackage: gnome-keyring To manage notifications about this bug go to: https://bugs.launchpad.net/gnome-keyring/+bug/714908/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
[Desktop-packages] [Bug 714908] Re: gnome-keyring reads unsafe SSH keys
expired version, and openssl has been widely reworked lately. ** Changed in: gnome-keyring (Ubuntu) Status: Triaged => Invalid -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to gnome-keyring in Ubuntu. https://bugs.launchpad.net/bugs/714908 Title: gnome-keyring reads unsafe SSH keys Status in GNOME Keyring: New Status in gnome-keyring package in Ubuntu: Invalid Status in gnome-keyring source package in Natty: Invalid Bug description: Binary package hint: gnome-keyring OpenSSH enforces that one's keys must be mode 0700 so that unsafe permissions do not go unnoticed. gnome-keyring should perform this check as well. It looks like pkcs11/ssh-store/gkm-ssh-private-key.c gkm_ssh_private_key_parse() is the place to do it, or possibly pkcs11 /ssh-store/gkm-ssh-module.c file_load() since it checks some aspects of the files already. ProblemType: Bug DistroRelease: Ubuntu 11.04 Package: gnome-keyring 2.92.92.is.2.32.1-0ubuntu2 ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37 Uname: Linux 2.6.37-12-generic x86_64 Architecture: amd64 Date: Mon Feb 7 15:23:20 2011 ProcEnviron: LANGUAGE=en_US:en PATH=(custom, user) LANG=en_US.UTF-8 LC_MESSAGES=en_US.utf8 SHELL=/bin/bash SourcePackage: gnome-keyring To manage notifications about this bug go to: https://bugs.launchpad.net/gnome-keyring/+bug/714908/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
[Desktop-packages] [Bug 714908] Re: gnome-keyring reads unsafe SSH keys
** Changed in: gnome-keyring (Ubuntu Natty) Assignee: Robert Ancell (robert-ancell) = (unassigned) ** Changed in: gnome-keyring (Ubuntu) Assignee: Robert Ancell (robert-ancell) = (unassigned) -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to gnome-keyring in Ubuntu. https://bugs.launchpad.net/bugs/714908 Title: gnome-keyring reads unsafe SSH keys Status in GNOME keyring services: New Status in “gnome-keyring” package in Ubuntu: Triaged Status in “gnome-keyring” source package in Natty: Invalid Bug description: Binary package hint: gnome-keyring OpenSSH enforces that one's keys must be mode 0700 so that unsafe permissions do not go unnoticed. gnome-keyring should perform this check as well. It looks like pkcs11/ssh-store/gkm-ssh-private-key.c gkm_ssh_private_key_parse() is the place to do it, or possibly pkcs11 /ssh-store/gkm-ssh-module.c file_load() since it checks some aspects of the files already. ProblemType: Bug DistroRelease: Ubuntu 11.04 Package: gnome-keyring 2.92.92.is.2.32.1-0ubuntu2 ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37 Uname: Linux 2.6.37-12-generic x86_64 Architecture: amd64 Date: Mon Feb 7 15:23:20 2011 ProcEnviron: LANGUAGE=en_US:en PATH=(custom, user) LANG=en_US.UTF-8 LC_MESSAGES=en_US.utf8 SHELL=/bin/bash SourcePackage: gnome-keyring To manage notifications about this bug go to: https://bugs.launchpad.net/gnome-keyring/+bug/714908/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
[Desktop-packages] [Bug 714908] Re: gnome-keyring reads unsafe SSH keys
https://wiki.ubuntu.com/Releases ** Changed in: gnome-keyring (Ubuntu Natty) Status: Triaged = Invalid ** Tags removed: natty -- You received this bug notification because you are a member of Desktop Packages, which is subscribed to gnome-keyring in Ubuntu. https://bugs.launchpad.net/bugs/714908 Title: gnome-keyring reads unsafe SSH keys Status in GNOME keyring services: New Status in “gnome-keyring” package in Ubuntu: Triaged Status in “gnome-keyring” source package in Natty: Invalid Bug description: Binary package hint: gnome-keyring OpenSSH enforces that one's keys must be mode 0700 so that unsafe permissions do not go unnoticed. gnome-keyring should perform this check as well. It looks like pkcs11/ssh-store/gkm-ssh-private-key.c gkm_ssh_private_key_parse() is the place to do it, or possibly pkcs11 /ssh-store/gkm-ssh-module.c file_load() since it checks some aspects of the files already. ProblemType: Bug DistroRelease: Ubuntu 11.04 Package: gnome-keyring 2.92.92.is.2.32.1-0ubuntu2 ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37 Uname: Linux 2.6.37-12-generic x86_64 Architecture: amd64 Date: Mon Feb 7 15:23:20 2011 ProcEnviron: LANGUAGE=en_US:en PATH=(custom, user) LANG=en_US.UTF-8 LC_MESSAGES=en_US.utf8 SHELL=/bin/bash SourcePackage: gnome-keyring To manage notifications about this bug go to: https://bugs.launchpad.net/gnome-keyring/+bug/714908/+subscriptions -- Mailing list: https://launchpad.net/~desktop-packages Post to : desktop-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~desktop-packages More help : https://help.launchpad.net/ListHelp
