Project

General

Profile

Actions

Bug #5907

closed

User story #6363: Secure agent/server communication

Any user can forge a fake report

Added by Benoît PECCATTE about 10 years ago. Updated over 1 year ago.

Status:
Rejected
Priority:
N/A
Assignee:
-
Category:
Security
Severity:
Critical - prevents main use of Rudder | no workaround | data loss | security
UX impact:
User visibility:
First impressions of Rudder
Effort required:
Large
Priority:
0
Name check:
Fix check:
Regression:

Description

This is a vulnerability.
Any user can write to syslog.
Therefore, any user can create a fake report telling rudder there is a problem (or there is no problem).


Related issues 1 (0 open1 closed)

Related to Rudder - Architecture #14008: Replace syslog by an HTTPS based communication for reportingReleasedAlexis MoussetActions
Actions #1

Updated by François ARMAND about 10 years ago

Some more context: on a node, any user can log things to syslog. So the idea is that a malicious, non privileged user could forge fake syslog logs as Rudder reports.

Actions #2

Updated by Benoît PECCATTE over 9 years ago

  • Category set to System integration
  • Target version set to Ideas (not version specific)
  • Parent task set to #6363
Actions #3

Updated by François ARMAND over 7 years ago

  • Private changed from No to Yes
  • Severity set to Critical - prevents main use of Rudder | no workaround | data loss | security
  • User visibility set to First impressions of Rudder
  • Priority set to 0

I'm setting it to "first impression" because given the category of rudder, it is expected, even without testing it, to have a secured message protocol between nodes and server.

Actions #4

Updated by Benoît PECCATTE over 7 years ago

  • Effort required set to Large
  • Priority changed from 0 to 78
Actions #5

Updated by Alexis Mousset about 6 years ago

  • Related to Architecture #14008: Replace syslog by an HTTPS based communication for reporting added
Actions #6

Updated by Alexis Mousset over 5 years ago

  • Status changed from New to Rejected
  • Priority changed from 78 to 92

Fixed by #14800 with report signature validation in 5.1.

We provide a system variable to disable syslog for reporting and fix this in 5.1.

Will only completely disappear once syslog support is completely removed, in a future Rudder version.

Actions #7

Updated by Alexis Mousset over 4 years ago

  • Category changed from System integration to Security
  • Priority changed from 92 to 94
Actions #8

Updated by Alexis Mousset over 1 year ago

  • Private changed from Yes to No
  • Priority changed from 94 to 0
Actions

Also available in: Atom PDF