Bug#768914: netcfg/wireless_wpa is type string, not type password

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#768914: netcfg/wireless_wpa is type string, not type password
From: "Trent W. Buck" <trentbuck@gmail.com>
Date: Mon, 10 Nov 2014 17:07:25 +1100
Message-id: <[🔎] 20141110060725.7743.44054.reportbug@frey>
Reply-to: "Trent W. Buck" <trentbuck@gmail.com>, 768914@bugs.debian.org

Package: netcfg
Severity: minor

I just installed wheezy over WPA and ran into #694068.
While investigating that, I grepped for my PSK across /.

I found it in /var/log/installer/cdebconf/questions.dat under
netcfg/wireless_wpa.  It is stored in cleartext; the file is only
readable by root.

In templates.dat (same dir), I see

    Name: netcfg/wireless_wpa
    Type: string
    Description: WPA/WPA2 passphrase [...]

Since it's a PASSPHRASE, shouldn't it be Type: password?

Normal users cannot read questions.dat,
so I don't think this is an immediate problem.


(FWIW hostapd's wpa_psk_file option lets each device have its own PSK,
so when Mallet is sacked and his PSK is revoked, he can't simply spoof
Alice's MAC and use his PSK to get in.  I don't use EAP-TLS client
certs because support for that is depressingly limited.

This means my PSKs are "more secret" than your typical home network
where there's one shared PSK that everyone knows.)

Reply to:

Follow-Ups:
- Bug#768914: netcfg/wireless_wpa is type string, not type password
  - From: Philipp Kern <pkern@debian.org>

Prev by Date: Bug#768897: Rough data flow trace
Next by Date: Processing of console-setup_1.115_amd64.changes
Previous by thread: Bug#768897: Rough data flow trace
Next by thread: Bug#768914: netcfg/wireless_wpa is type string, not type password
Index(es):
- Date
- Thread