Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security of configuration file. #68

Open
jridky opened this issue Aug 24, 2015 · 1 comment
Open

Security of configuration file. #68

jridky opened this issue Aug 24, 2015 · 1 comment
Assignees
@SimonMatej
Labels
client/server configuration security
Milestone
ssds-0.4.0

Comments

@jridky
Copy link
Collaborator

jridky commented Aug 24, 2015

Try to think about how to protect data in configuration file from abuse. In configuration file will be (probably) saved even unique id of client, so data stored in the file should not be in plain text, but somehow encoded or encrypted. Find out how is saving of sensitive data solved in fedora.
@SimonMatej
Copy link
Contributor

By encryption part of fedora documentation, GnuPG is used for file based encryption (https://www.gnupg.org/). GnuPG is designed to be used interactively, and not as an API, but there is a library GnuPG Made Easy (GPGME), which should work for us.
Another way is using CryptoAPI from linux kernel.

@phracek phracek added this to the ssds-0.4.0 milestone Nov 2, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@SimonMatej SimonMatej

Labels
client/server configuration security
Projects
None yet
Milestone
ssds-0.4.0
Development

No branches or pull requests
3 participants
@phracek @jridky @SimonMatej