Mailinglist Archive: opensuse-buildservice (351 mails)

< Previous Next >
Re: [opensuse-buildservice] OBS Webclient Redesing
  • From: Andreas Bauer <abauer@xxxxxxx>
  • Date: Fri, 25 Jul 2008 14:13:10 +0200
  • Message-id: <4889C356.7030807@xxxxxxx>
Dirk Stöcker schrieb:
On Fri, 25 Jul 2008, Andreas Bauer wrote:

This is a big misunderstanding of "secure", if you ask me.

Or what do I miss? :-)

Neither build.opensuse.org nor api.opensuse.org ever get in touch with
the password, it is handled by the ichain proxy. This means even if some
evil person manages to infect the api/build source or the api/build
server gets hacked, no passwords can be sniffed/retrieved.

This assumes, that the user recognices, that the login-page is on an different system. I doubt that. I would recognice, because the automatic password entering of my system would not work, but I would not see this, when I type it by hand.

Making an login/password form on obs and let it point to the same target as the current login points to would not change the security in a measurable degree.

The servers involved would not see paswords as well. Only if webpages on the obs servers are hacked, the password fields could be used in a dangerous way and in this case a dangerous login redirector could do the same.

Hmm... you're right. Also, on every buildservice installation that don't
use ichain the passwords are indeed handled by the buildservice, so at
least for non-ichain auth the form should be available.

For ichain auth however the form would break as soon as the ichain proxy
changes the login form field names. I don't know if this will happen,
fact is, we don't control it. And in case it happens, it probably does
so at europe night time when no one is around to fix it on our side.

There might also be cases where two buildservice instances run behind
different versions of ichain proxies. The form works on one and not on
the other.

In any case, the form for ichain auth is a very fragile construct that I
personally wouldn't like to maintain. For any other auth method, good idea.

Andreas

Ciao
---------------------------------------------------------------------
To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-buildservice+help@xxxxxxxxxxxx

< Previous Next >