Jump to content

Allow Encryption Key To Be Changed

srn

By srn
in Feature Requests

 Share

Recommended Posts

srn Newbie

srn

Posted
Posted

It is not uncommon for people to accidentally check in sensitive information such as database logins and API keys (x-ref http://arstechnica.com/security/2015/03/ubers-epic-db-blunder-is-hardly-an-exception-github-is-awash-in-passwords/) and the blesta encryption key is almost as sensitive. I think there should really be a script that uses the old key and a newly generated key and descrypts/re-encrypts the data in the database.

Link to comment
Share on other sites
mrrsm Newbie

mrrsm

Posted
Posted

Not a fan, because if someone get's your database some how, installs blesta, all they need to do is run that script to change the key and then they have everything in the database.

They need your old encryption key, if they have that and your database you are screwed anyways.

Link to comment
Share on other sites
Michael Apprentice

Michael

Posted
Posted

They need your old encryption key, if they have that and your database you are screwed anyways.

 

True but you don't want to have something which is vital to your system to be changed the only reason this would be a good idea is if you are merging two databases to one. Blesta to Blesta installation so you don't have two sets of encryption.

Link to comment
Share on other sites
mrrsm Newbie

mrrsm

Posted
Posted

True but you don't want to have something which is vital to your system to be changed the only reason this would be a good idea is if you are merging two databases to one. Blesta to Blesta installation so you don't have two sets of encryption.

Do you ever change your password?  To me this could be the same principal.

 

Another reason I see is if someone gained access to my system but my database was safe I would need to change my encryption key for security reasons.

 

Having a tool, not normally uploaded to your live system, available would be nice to have.

Not a high priority for the blesta team, I don't think, as anyone (developer) should be able to create a tool to do this as blesta doesn't hide how it does encryption.

Link to comment
Share on other sites
Michael Apprentice

Michael

Posted
Posted

Do you ever change your password?  To me this could be the same principal.

 

Another reason I see is if someone gained access to my system but my database was safe I would need to change my encryption key for security reasons.

 

Having a tool, not normally uploaded to your live system, available would be nice to have.

Not a high priority for the blesta team, I don't think, as anyone (developer) should be able to create a tool to do this as blesta doesn't hide how it does encryption.

 

Passwords are different, an encryption key only works for encrypting the database hashes. As you stated you need both otherwise they are useless. A password gains access to whatever you use it for.

Link to comment
Share on other sites
mrrsm Newbie

mrrsm

Posted
Posted

Passwords are different, an encryption key only works for encrypting the database hashes. As you stated you need both otherwise they are useless. A password gains access to whatever you use it for.

You are correct, it was a bad analogy.

 

My overall opinion stands though

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
 Share
Go to topic listing
×
×
  • Create New...