Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

sudo password assumes host will have base64 command #445

Closed
miah opened this issue May 1, 2019 · 1 comment
Closed

sudo password assumes host will have base64 command #445

miah opened this issue May 1, 2019 · 1 comment
Labels
Platform: UNIX-Like Priority: Low May be addressed in 4+ business days (i.e. NO commitment) Type: Bug Feature not working as expected

Comments

@miah
Copy link
Contributor

miah commented May 1, 2019

The base64 command is used to ensure the sudo password is not mangled when passed through train. Some systems, like HPUX and AIX do not have a base64 command, so this will error:

PS> inspec shell --backend=ssh --host=<omitted> --user=USER --password=$env:SudoPassword --sudo --sudo-options=“-u sudouser” --sudo-password=$env:SudoPassword
Sudo failed:  ksh: base64:  not found
Password:
sudo: pam_authenticate: Conversation failure
@miah miah added Type: Bug Feature not working as expected Platform/UNIX-Like labels May 1, 2019
@clintoncwolfe clintoncwolfe mentioned this issue May 10, 2019
Closed
@zenspider zenspider added the Priority: Low May be addressed in 4+ business days (i.e. NO commitment) label Oct 14, 2019
@RubyTuesdayDONO
Copy link

tbh it was also rather disturbing to see my password in the debug logs, even if superficially hidden by base64 encoding. we owe users better than allowing sensitive confidential data to be leaked in any trivially-discoverable way.

@clintoncwolfe clintoncwolfe mentioned this issue Feb 28, 2020
Merged
@miah miah closed this as completed Feb 16, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Platform: UNIX-Like Priority: Low May be addressed in 4+ business days (i.e. NO commitment) Type: Bug Feature not working as expected
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@zenspider @miah @RubyTuesdayDONO