Add checksum reporting to critical system files #412

rptrchv · 2019-09-18T08:14:43Z

Closes #400
Depends on WoTTsecurity/agent#207 WoTTsecurity/agent#213

vpetersson · 2019-09-18T10:49:45Z

@rptrchv can we change the Issues section down to it's own section? These are important as they also will need to be converted into recommended action items.

a-martynovich · 2019-09-18T10:57:35Z

Also as @vpetersson told us 2 weeks ago the checksum should be a tooltip hidden behind an icon, just like those (?) icons near Open Connections and Download Device Certificate, not a column in the table.

rptrchv · 2019-09-18T13:08:52Z

@rptrchv can we change the Issues section down to it's own section? These are important as they also will need to be converted into recommended action items.

I don't quite understand how it should look. Can you provide more detail or maybe even some hand-drawn picture?
If I add a new row "Audited files issues" below existing "Audited files" then we'll lose issues-file relation

rptrchv · 2019-09-18T13:14:47Z

Also as @vpetersson told us 2 weeks ago the checksum should be a tooltip hidden behind an icon, just like those (?) icons near Open Connections and Download Device Certificate, not a column in the table.

This won't allow a user to copy the checksum

vpetersson · 2019-09-18T14:11:07Z

@rptrchv In order to speed things up, let's keep the structure that you had and iterate later. However, let's change it to look more like this:

Re-use the same warning icon as the other ones (I took a shortcut there)..

rptrchv · 2019-09-18T14:13:28Z

@vpetersson ok. what about checksum? should I leave it as is?

vpetersson · 2019-09-18T14:13:58Z

@vpetersson ok. what about checksum? should I leave it as is?

Yeah leave that as is for now.

vpetersson · 2019-09-18T14:14:20Z

But also, please pay attention to and make sure to use Title Case in headings.

vpetersson · 2019-09-18T16:28:45Z

@rptrchv Keep in mind that I put in "OpenSSH Audit" in as a placeholder for this.

a-martynovich

@rptrchv Please state what a commit does instead of "Improvements requested in the review"

a-martynovich · 2019-09-30T08:27:33Z

backend/device_registry/models.py

+                        if v == 'yes':
+                            secure_value = 'no'
+                        else:
+                            secure_value = '2'  # Support only 'Protocol' now. TODO: improve this.


This needs improvement indeed. Not only the "Protocol" field should be explicitly handled, but also PermitRootLogin may have other values than "yes".

a-martynovich · 2019-09-30T08:28:43Z

backend/backend/settings/dev.py

@@ -25,3 +25,5 @@
 IS_DEV = True

 EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
+
+ALLOWED_HOSTS = ['*']


should this be here?

yes, it's needed for making it accessible from my own device (from local network) when run with docker-compose. I hope this addition won't break anything in our prod infrastructure

Closes #400

- moved 'System File Audit' section to the proper place - added 'Configuration Audit' section with only OpenSSH issues for now

vpetersson requested a review from a-martynovich September 18, 2019 10:48

rptrchv force-pushed the issue_400 branch from 52a686c to b63ca95 Compare September 18, 2019 13:22

rptrchv force-pushed the issue_400 branch from b63ca95 to 3f66385 Compare September 24, 2019 14:55

a-martynovich suggested changes Sep 30, 2019

View reviewed changes

a-martynovich reviewed Sep 30, 2019

View reviewed changes

Roman P added 3 commits October 3, 2019 10:08

Add checksum reporting to critical system files

3d07b7f

Closes #400

Improvements requested in the review

8af0f63

- moved 'System File Audit' section to the proper place - added 'Configuration Audit' section with only OpenSSH issues for now

Fixed sshd config params secure values

cad5ced

rptrchv force-pushed the issue_400 branch from 3f66385 to cad5ced Compare October 3, 2019 08:34

rptrchv requested a review from a-martynovich October 3, 2019 08:48

a-martynovich approved these changes Oct 3, 2019

View reviewed changes

vpetersson merged commit 22986cf into WoTTsecurity:master Oct 3, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add checksum reporting to critical system files #412

Add checksum reporting to critical system files #412

rptrchv commented Sep 18, 2019 •

edited

Loading

vpetersson commented Sep 18, 2019

a-martynovich commented Sep 18, 2019

rptrchv commented Sep 18, 2019 •

edited

Loading

rptrchv commented Sep 18, 2019

vpetersson commented Sep 18, 2019

rptrchv commented Sep 18, 2019

vpetersson commented Sep 18, 2019

vpetersson commented Sep 18, 2019

vpetersson commented Sep 18, 2019

a-martynovich left a comment

a-martynovich Sep 30, 2019

a-martynovich Sep 30, 2019

rptrchv Oct 3, 2019

Add checksum reporting to critical system files #412

Add checksum reporting to critical system files #412

Conversation

rptrchv commented Sep 18, 2019 • edited Loading

vpetersson commented Sep 18, 2019

a-martynovich commented Sep 18, 2019

rptrchv commented Sep 18, 2019 • edited Loading

rptrchv commented Sep 18, 2019

vpetersson commented Sep 18, 2019

rptrchv commented Sep 18, 2019

vpetersson commented Sep 18, 2019

vpetersson commented Sep 18, 2019

vpetersson commented Sep 18, 2019

a-martynovich left a comment

Choose a reason for hiding this comment

a-martynovich Sep 30, 2019

Choose a reason for hiding this comment

a-martynovich Sep 30, 2019

Choose a reason for hiding this comment

rptrchv Oct 3, 2019

Choose a reason for hiding this comment

rptrchv commented Sep 18, 2019 •

edited

Loading

rptrchv commented Sep 18, 2019 •

edited

Loading