[Touch-packages] [Bug 1904082] Re: apport's log collecting leaks MAC addresses maybe helping WiFi attacks?
** Changed in: apport (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apport in Ubuntu. https://bugs.launchpad.net/bugs/1904082 Title: apport's log collecting leaks MAC addresses maybe helping WiFi attacks? Status in apport package in Ubuntu: Confirmed Bug description: Some people configure their Internet WiFi modems such that only certain devices, defined by their MAC addresses, can (try to?) connect. I am aware this is VERY WEAK "security" since MAC addresses are easily spoofed. It occurs to me that the logs collected by apport-cli(1) and friends, when reporting a bug, contain the system's MAC addresses. Those logs are normally publicly readable by anyone browsing Launchpad. That means villains could reap (collect) MAC addresses to spoof and try to obtain an unintended WiFi connection. (Isn't necessarily easy since the attacker would have(?) to be within range of the modem to try?) I am NOT saying this has happened — I have no idea. I just wanted to bring this hypothetical(?) problem/attack to your attention. ProblemType: Bug DistroRelease: Ubuntu 20.04 Package: apport 2.20.11-0ubuntu27.12 ProcVersionSignature: Ubuntu 5.4.0-53.59-generic 5.4.65 Uname: Linux 5.4.0-53-generic x86_64 ApportLog: ApportVersion: 2.20.11-0ubuntu27.12 Architecture: amd64 CasperMD5CheckResult: skip CrashReports: 664:1000:125:0:2020-11-13 03:00:18.498740147 +0100:2020-11-13 03:00:18.498740147 +0100:/var/crash/_usr_bin_kglobalaccel5.1000.upload 600:118:125:37:2020-11-13 03:00:19.490721528 +0100:2020-11-13 03:00:19.490721528 +0100:/var/crash/_usr_bin_kglobalaccel5.1000.uploaded 640:1000:125:798567:2020-11-13 03:00:16.626756668 +0100:2020-11-13 03:00:17.626756668 +0100:/var/crash/_usr_bin_kglobalaccel5.1000.crash Date: Fri Nov 13 03:03:36 2020 InstallationDate: Installed on 2020-10-19 (24 days ago) InstallationMedia: Kubuntu 20.04 LTS "Focal Fossa" - Release amd64 (20200423) PackageArchitecture: all SourcePackage: apport UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1904082/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1904082] Re: apport's log collecting leaks MAC addresses maybe helping WiFi attacks?
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apport in Ubuntu. https://bugs.launchpad.net/bugs/1904082 Title: apport's log collecting leaks MAC addresses maybe helping WiFi attacks? Status in apport package in Ubuntu: New Bug description: Some people configure their Internet WiFi modems such that only certain devices, defined by their MAC addresses, can (try to?) connect. I am aware this is VERY WEAK "security" since MAC addresses are easily spoofed. It occurs to me that the logs collected by apport-cli(1) and friends, when reporting a bug, contain the system's MAC addresses. Those logs are normally publicly readable by anyone browsing Launchpad. That means villains could reap (collect) MAC addresses to spoof and try to obtain an unintended WiFi connection. (Isn't necessarily easy since the attacker would have(?) to be within range of the modem to try?) I am NOT saying this has happened — I have no idea. I just wanted to bring this hypothetical(?) problem/attack to your attention. ProblemType: Bug DistroRelease: Ubuntu 20.04 Package: apport 2.20.11-0ubuntu27.12 ProcVersionSignature: Ubuntu 5.4.0-53.59-generic 5.4.65 Uname: Linux 5.4.0-53-generic x86_64 ApportLog: ApportVersion: 2.20.11-0ubuntu27.12 Architecture: amd64 CasperMD5CheckResult: skip CrashReports: 664:1000:125:0:2020-11-13 03:00:18.498740147 +0100:2020-11-13 03:00:18.498740147 +0100:/var/crash/_usr_bin_kglobalaccel5.1000.upload 600:118:125:37:2020-11-13 03:00:19.490721528 +0100:2020-11-13 03:00:19.490721528 +0100:/var/crash/_usr_bin_kglobalaccel5.1000.uploaded 640:1000:125:798567:2020-11-13 03:00:16.626756668 +0100:2020-11-13 03:00:17.626756668 +0100:/var/crash/_usr_bin_kglobalaccel5.1000.crash Date: Fri Nov 13 03:03:36 2020 InstallationDate: Installed on 2020-10-19 (24 days ago) InstallationMedia: Kubuntu 20.04 LTS "Focal Fossa" - Release amd64 (20200423) PackageArchitecture: all SourcePackage: apport UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1904082/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
