Ubuntu
netcfg package

netplan stores wifi-password world-readable

Bug #1832309 reported by Rolf Leggewie on 2019-06-11

258

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	netcfg (Ubuntu)	Confirmed	Medium	Unassigned
	Eoan	Won't Fix	Medium	Unassigned
	netplan.io (Ubuntu)	Won't Fix	High	Unassigned
	Eoan	Won't Fix	High	Unassigned

Bug Description

-rw-r--r-- 1 root root 293 Apr 11 2018 /etc/netplan/01-netcfg.yaml

above file stores the wifi password in plain text!

Tags:

Rolf Leggewie (r0lf) on 2019-06-11

information type:	Private Security → Public
tags:	added: community-security

Alex Murray (alexmurray) on 2019-06-11

information type:

Public → Public Security

Seth Arnold (seth-arnold) on 2019-06-12

affects:

plan (Ubuntu) → netplan.io (Ubuntu)

Sebastien Bacher (seb128) on 2019-06-21

Changed in netplan.io (Ubuntu):
importance:	Undecided → High
tags:	added: rls-ee-incoming

Brian Murray (brian-murray) on 2019-06-27

Changed in netplan.io (Ubuntu Eoan):
status:	New → Confirmed
tags:	added: eoan removed: rls-ee-incoming

Francis Ginther (fginther) on 2019-06-29

tags:

added: id-5d14ed4981f5ba74a04b0aa9

Łukasz Zemczak (sil2100) on 2019-07-17

Changed in netplan.io (Ubuntu Eoan):
assignee:	nobody → Łukasz Zemczak (sil2100)
status:	Confirmed → In Progress

Łukasz Zemczak (sil2100) on 2019-07-19

Changed in netplan.io (Ubuntu Eoan):
status:	In Progress → Won't Fix
Changed in netcfg (Ubuntu Eoan):
importance:	Undecided → Medium
Changed in netplan.io (Ubuntu Eoan):
assignee:	Łukasz Zemczak (sil2100) → nobody
Changed in netcfg (Ubuntu Eoan):
status:	New → Confirmed

Revision history for this message

Łukasz Zemczak (sil2100) wrote on 2019-07-19:

#1

The /etc/netplan/01-netcfg.yaml file is generated by netcfg and is unrelated to netplan.io itself (as netplan only comes into play when parsing the file). This means that we essentially need to modify netcfg, and possibly all other installers that generate netplan configs (subiquity?), to not write the passphrase into a world-readable file. As per Steve's input, I guess the best way would be do split the config into two parts - one 'world-readable' with info that everyone should have access to and one with secrets.

Łukasz Zemczak (sil2100) on 2019-07-22

Changed in netplan.io (Ubuntu):
status:	In Progress → Won't Fix
assignee:	Łukasz Zemczak (sil2100) → nobody

Revision history for this message

Michael Hudson-Doyle (mwhudson) wrote on 2019-07-22:

#2

I am aware that as and when the live-server installer supports wifi at all I need to do something about this. I'm not sure what, but something :)

Revision history for this message

Oliver Grawert (ogra) wrote on 2019-07-25:

#3

(since this bug has come up in UbuntCore discussions and apparently scared some people)

note that netplan configs on Ubuntu Core as created by subiquity are root-only readable, so UbuntuCore is not affected:

$ ls -l /etc/netplan/00-snapd-config.yaml
-rw------- 1 root root 138 Jul 25 13:19 /etc/netplan/00-snapd-config.yaml

Revision history for this message

Brian Murray (brian-murray) wrote on 2020-08-18:

#4

The Eoan Ermine has reached end of life, so this bug will not be fixed for that release

Changed in netcfg (Ubuntu Eoan):
status:	Confirmed → Won't Fix

Revision history for this message

Rolf Leggewie (r0lf) wrote on 2021-01-26:

#5

a security issue with medium importance not fixed for almost 2 years?

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.