Projects/mysqladm-rs
Projects
/
mysqladm-rs
12
2
Fork 0
Code Issues 36 Pull Requests Releases Activity

Ensure proper permission handling when overshadowing unix user/group names, and groups with _ #51

New Issue
Open
opened 2024-08-17 15:32:29 +02:00 by oysteikt · 2 comments
oysteikt commented 2024-08-17 15:32:29 +02:00
Owner
Copy Link

Take the following case: On the system there are 2 users usera and userb. usera is part of group1, and userb is part of group1_2.

In the current implementation, usera would be able to create a database group1_2_asdf, even though they are not part of group1_2, and I'm not even sure what the logic is for userb, considering the names are split on _. Should we just outright ban groups with _?

Take the following case: On the system there are 2 users `usera` and `userb`. `usera` is part of `group1`, and `userb` is part of `group1_2`. In the current implementation, `usera` would be able to create a database `group1_2_asdf`, even though they are not part of `group1_2`, and I'm not even sure what the logic is for `userb`, considering the names are split on `_`. Should we just outright ban groups with `_`?
oysteikt added this to the Initial release milestone 2024-08-17 15:32:29 +02:00
oysteikt added the
bug
security
 labels 2024-08-17 15:32:29 +02:00
oysteikt commented 2024-08-17 21:37:46 +02:00
Author
Owner
Copy Link

Relevant piece of code: af86893acf/src/server/input_sanitization.rs (L34-L60)

Relevant piece of code: https://git.pvv.ntnu.no/Projects/mysqladm-rs/src/commit/af86893acf94f49d40cc2b42ff15987cae21e16f/src/server/input_sanitization.rs#L34-L60
oysteikt commented 2024-08-17 22:31:57 +02:00
Author
Owner
Copy Link

This turned out to be somewhat nontrivial, due to libc not having any good way to fetch all groups. getent(1) is probably the best option, but it requires us to do external command calls and validate whether that tool is available. Leaving for another release.

This turned out to be somewhat nontrivial, due to libc not having any good way to fetch all groups. `getent(1)` is probably the best option, but it requires us to do external command calls and validate whether that tool is available. Leaving for another release.
oysteikt removed this from the Initial release milestone 2024-08-17 22:32:07 +02:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
dpkg-packaging
Labels
Clear labels
  
art

The issue needs someone to be creative

  
big

No, not bug, **big** - this is gonna take a while

  
blocked

This issue/PR depends on one or more other issues/PRs

  
bug

Something is not working, and it's not the shield hero

  
crash report

Report an oopsie

  
disputed

kranglefanter

  
documentation

Documentation changes required

  
duplicate

This issue or pull request already exists

  
feature request

New feature

  
good first issue

Get your hands dirty with a new project here

  
packaging

Relates to distribution of the software

  
question

More information is needed

  
security

Skommel

  
wontfix

This won't be fixed

No Label
art
big
blocked
bug
crash report
disputed
documentation
duplicate
feature request
good first issue
packaging
question
security
wontfix
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Projects/mysqladm-rs#51
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?