Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FTL database shouldn't be readable by unprivileged users #5569

Open
orazioedoardo opened this issue Feb 6, 2024 · 7 comments
Open

FTL database shouldn't be readable by unprivileged users #5569

orazioedoardo opened this issue Feb 6, 2024 · 7 comments
Labels
Feature Request General Feature Requests internal

Comments

@orazioedoardo
Copy link
Contributor

orazioedoardo commented Feb 6, 2024
edited

Expected behavior

FTL database is private.

Actual behavior / bug

Any users on the system can read the database and gather information about pihole usage patters, domains visited, etc.

Steps to reproduce

Observe that the database at /etc/pihole/pihole-FTL.db has -rw-rw-r-- permissions.

pi-hole/advanced/Templates/pihole-FTL-prestart.sh

Line 27 in 19bfa08

chmod -f 0664 /etc/pihole/pihole-FTL.db

Additional context

DNS logs are already configured with -rw-r----- but the database contains a lot more data and for a longer timespan.
@github-actions GitHub Actions
Copy link

github-actions bot commented Mar 8, 2024

This issue is stale because it has been open 30 days with no activity. Please comment or update this issue or it will be closed in 5 days.

@github-actions github-actions bot added the stale label Mar 8, 2024
@orazioedoardo
Copy link
Contributor Author

Still relevant

@github-actions github-actions bot removed the stale label Mar 8, 2024
@DL6ER
Copy link
Member

DL6ER commented Mar 8, 2024

Thanks for your suggestion and sorry for the huge delay. I will make sure to submit this as a change into the currently running public Pi-hole v6.0 beta round.

@DL6ER DL6ER added Feature Request General Feature Requests never-stale labels Mar 8, 2024
@github-actions GitHub Actions
Copy link

github-actions bot commented Apr 8, 2024

This issue is stale because it has been open 30 days with no activity. Please comment or update this issue or it will be closed in 5 days.

@github-actions github-actions bot added the stale label Apr 8, 2024
@PromoFaux
Copy link
Member

Apaprently the never-stale label does not work here.. changed to a known working one for now

@github-actions github-actions bot removed the stale label Apr 8, 2024
@rdwebdesign
Copy link
Member

Note about the never-stale label:

Apaprently the never-stale label does not work here

never-stale is missing for issues:

pi-hole/.github/workflows/stale.yml

Line 27 in 5490a6e

exempt-issue-labels: 'Internal, Fixed in next release, Bug: Confirmed, Documentation Needed'

There is a different workflow for PRs. That workflow has a different set of labels and includes never-stale:

pi-hole/.github/workflows/stale_pr.yml

Line 31 in 5490a6e

exempt-pr-labels: 'internal, never-stale, ON HOLD, WIP'

@Iksas
Copy link

Iksas commented Apr 27, 2024

Somewhat related: /etc/pihole/setupVars.conf contains the password hash of the web interface, and is world-readable. This can make it easier to brute force the password.

Could it be a solution to make the files in /etc/pihole/ readable by members of the pihole group only? The LIGHTTPD_USER is already a member of the pihole group anyway, so the web interface should be compatible with this change:

https://github.com/pi-hole/pi-hole/blob/master/automated%20install/basic-install.sh#L1923

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Feature Request General Feature Requests internal
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
5 participants
@rdwebdesign @PromoFaux @DL6ER @Iksas @orazioedoardo