NetMan storing passwords as clear text

Post here if you are a new Porteus member and you're looking for some help.
Post Reply
frederick
White ninja
White ninja
Posts: 16
Joined: 13 Jan 2017, 16:31
Distribution: Porteus 3.2.2 Mate 32bit
Location: toronto

NetMan storing passwords as clear text

Post#1 by frederick » 29 Jan 2017, 17:50

Hi.
Porteus 3.2.2 mate-32bits. When Editing and saving a wifi connection, network manager generates a configuration file for each access point you want/edit, in /etc/NetworkManager/system-connections/
Checking one, found the password is stored as clear test. Is this the way it's supposed to be? Should it be saving the password in encrypted form?
In Wi-Fi security, show password is ticked off.

[wifi-security]
.....
psk=porteus322networktestkey

Code: Select all

[connection]
id=NetTest	
uuid=58b0e427-0fb3-2749-eec7-ec5bd4784851
type=wifi
interface-name=eth1
permissions=
secondaries=

[wifi]
mac-address=AA:56:DF:34:1D:51
mac-address-blacklist=
mac-address-randomization=0
mode=infrastructure
seen-bssids=
ssid=NetTest

[wifi-security]
group=
key-mgmt=wpa-psk
pairwise=
proto=
psk=porteus322networktestkey

[ipv4]
dns-search=
method=auto

[ipv6]
addr-gen-mode=stable-privacy
dns-search=
ip6-privacy=0
method=auto
Thanks
frederick

donald
Full of knowledge
Full of knowledge
Posts: 1126
Joined: 17 Jun 2013, 13:17
Distribution: Porteus 3.2.2 XFCE 32bit
Location: Germany

Re: NetMan storing passwords as clear text

Post#2 by donald » 29 Jan 2017, 18:21

guest@porteus:/etc/NetworkManager/system-connections$ ls -lh
total 4.0K
-rw------- 1 root root 491 Jan 3 14:59 Blabla
so a normal user (guest) can do exactly nothing.
BUT
unfortunately we have this sudo crap (I hate sudo)
so a simple sudo cat ./Blabla will reveal the secret. :evil:

frederick
White ninja
White ninja
Posts: 16
Joined: 13 Jan 2017, 16:31
Distribution: Porteus 3.2.2 Mate 32bit
Location: toronto

Re: NetMan storing passwords as clear text

Post#3 by frederick » 29 Jan 2017, 19:44

It's by design then...
Was reading about polkit, gnome-authentication, keyrings, dbus and ..., trying to learn a little bit about how everything comes together.
Found that file and thought it funny... for not wanting to :wall:
Thanks!

Post Reply