Comments on: Rails 2.0 CookieStore insecure after all, because…

By: Rails 2.0 security « jos442’s blog

Rails 2.0 security « jos442’s blog — Tue, 27 Nov 2007 08:35:10 +0000

[...] are subject to brute force attacks and session replay attacks. There’s currently a flaw that makes brute force attacks easy, although it should be fixed [...]

By: Hongli

Hongli — Mon, 26 Nov 2007 17:38:10 +0000

Just use the code from my script.

By: Ben Reubenstein

Ben Reubenstein — Mon, 26 Nov 2007 17:06:33 +0000

I just spent a long time trying to get SecureRandom working. Is there a simple way to bring it into the 1.8 or should I just wait for 1.9 to come around?

By: Pratik

Pratik — Mon, 26 Nov 2007 13:26:12 +0000

Ah ok. securerandom looks like a ruby 1.9 thingy.

By: Jamie Flournoy

Jamie Flournoy — Mon, 26 Nov 2007 13:20:51 +0000

>I’m now working on a patch
Sweet! When in doubt, Ruby should always be delegating gnarly stuff like crypto to trustworthy libraries.

>I believe that, once the secret key generator has been fixed, CookieStore will be secure by default.
Sure, from a message-integrity standpoint (can’t forge session data), though not a secrecy standpoint (still can read session contents). But that’s how it was designed to work, so this is more of a taste/paranoia issue than an out and out bug.

By: Pratik

Pratik — Mon, 26 Nov 2007 13:19:35 +0000

It’s been there for over a month

By: Hongli

Hongli — Mon, 26 Nov 2007 13:14:51 +0000

Ah, I see. That’s great, but the secret key generator in the application generator (app_generator.rb) is still insecure.

And SecureRandom is not installed by default everywhere. It’s not in the Ubuntu repositories, and I can’t seem to find a download website for SecureRandom. The code should fallback to other (still-better-than-rand) methods.

By: Pratik

Pratik — Mon, 26 Nov 2007 13:09:48 +0000

Umm…wait a second.. http://dev.rubyonrails.org/changeset/7966 is this not supposed to fix that ?