← Back to branch summary

~ubuntu-branches/ubuntu/jaunty/pcsc-lite/jaunty-security

~ubuntu-branches/ubuntu/jaunty/pcsc-lite/jaunty-security

« back to all changes in this revision

Viewing changes to SECURITY

Committer: Bazaar Package Importer
Author(s): Ludovic Rousseau
Date: 2005-11-27 18:04:59 UTC
mfrom: (1.2.2 upstream)
Revision ID: james.westby@ubuntu.com-20051127180459-qrex2gzpq9d8jexd

Tags: 1.2.9-beta9-1

* New upstream version
* debian/compat: change from 3 to 4

files added:
AUTHORS

COPYING

ChangeLog

ChangeLog.cvs

DRIVERS

HELP

INSTALL

Makefile.am

Makefile.in

NEWS

README

SECURITY

TODO

aclocal.m4

bootstrap

compile

config.guess

config.h.in

config.sub

configure

configure.in

depcomp

doc

doc/Makefile.am

doc/Makefile.in

doc/README.DAEMON

doc/doxygen.conf.in

doc/example

doc/example/GPL-2

doc/example/Makefile.am

doc/example/Makefile.in

doc/example/pcsc_demo.c

doc/formaticc.1

doc/ifdhandler-3.pdf

doc/ifdhandler-3.tex

doc/pcsc-lite.bib

doc/pcsc-lite.pdf

doc/pcsc-lite.tex

doc/pcscd.8.in

doc/reader.conf.5.in

etc

etc/Makefile.am

etc/Makefile.in

etc/SmartcardServices

etc/StartupParameters.plist

etc/pcscd.init.in

etc/reader.conf.in

etc/update-reader.conf.in

install-sh

libmusclecard/src/tokenparser.c

ltmain.sh

m4

m4/Makefile.am

m4/Makefile.in

m4/acx_pthread.m4

m4/as-ac-expand.m4

missing

src

src/Makefile.am

src/Makefile.in

src/PCSC

src/PCSC/debuglog.h

src/PCSC/ifdhandler.h

src/PCSC/pcsclite.h.in

src/PCSC/reader.h.in

src/PCSC/winscard.h

src/PCSC/wintypes.h

src/README_INTERNALS.txt

src/atrhandler.c

src/atrhandler.h

src/configfile.c

src/configfile.h

src/configfile.l

src/debuglog.c

src/dyn_generic.h

src/dyn_hpux.c

src/dyn_macosx.c

src/dyn_unix.c

src/dyn_win32.c

src/eventhandler.c

src/eventhandler.h

src/hotplug.h

src/hotplug_generic.c

src/hotplug_libusb.c

src/hotplug_linux.c

src/hotplug_macosx.c

src/ifdwrapper.c

src/ifdwrapper.h

src/libpcsclite.pc.in

src/misc.h

src/parser.h

src/pcscdaemon.c

src/powermgt_generic.c

src/powermgt_generic.h

src/powermgt_macosx.c

src/prothandler.c

src/prothandler.h

src/readerfactory.c

src/readerfactory.h

src/strlcat.c

src/strlcpy.c

src/strlcpycat.h

src/sys_generic.h

src/sys_unix.c

src/testpcsc.c

src/thread_generic.h

src/thread_unix.c

src/thread_win32.c

src/tokenparser.c

src/tokenparser.l

src/utils

src/utils/Makefile.am

src/utils/Makefile.in

src/utils/README

src/utils/formaticc.c

src/utils/installifd.c

src/utils/sample.ibm

src/utils/sample.in

src/utils/sample.out

src/winscard.c

src/winscard_clnt.c

src/winscard_msg.c

src/winscard_msg.h

src/winscard_msg_srv.c

src/winscard_scf.c

src/winscard_svc.c

src/winscard_svc.h

win32

win32/Makefile.am

win32/Makefile.in

win32/PCSC.cpp

win32/PCSC.dsp

win32/PCSC.h

win32/StdAfx.cpp

win32/StdAfx.h

win32/config.h

win32/pthread.h

win32/sched.h

ylwrap

files removed:
libmusclecard/AUTHORS

libmusclecard/COPYING

libmusclecard/ChangeLog

libmusclecard/ChangeLog.cvs

libmusclecard/INSTALL

libmusclecard/NEWS

libmusclecard/README

libmusclecard/acinclude.m4

libmusclecard/aclocal.m4

libmusclecard/bootstrap

libmusclecard/compile

libmusclecard/config.guess

libmusclecard/config.h.in

libmusclecard/config.sub

libmusclecard/configure

libmusclecard/configure.in

libmusclecard/depcomp

libmusclecard/install-sh

libmusclecard/ltmain.sh

libmusclecard/missing

libmusclecard/mkinstalldirs

libmusclecard/src/strlcat.c

libmusclecard/src/strlcpy.c

libmusclecard/src/strlcpycat.h

pcsc-lite

pcsc-lite/AUTHORS

pcsc-lite/COPYING

pcsc-lite/ChangeLog

pcsc-lite/ChangeLog.cvs

pcsc-lite/DRIVERS

pcsc-lite/HELP

pcsc-lite/INSTALL

pcsc-lite/Makefile.am

pcsc-lite/Makefile.in

pcsc-lite/NEWS

pcsc-lite/README

pcsc-lite/SECURITY

pcsc-lite/TODO

pcsc-lite/aclocal.m4

pcsc-lite/bootstrap

pcsc-lite/compile

pcsc-lite/config.guess

pcsc-lite/config.h.in

pcsc-lite/config.sub

pcsc-lite/configure

pcsc-lite/configure.in

pcsc-lite/depcomp

pcsc-lite/doc

pcsc-lite/doc/Makefile.am

pcsc-lite/doc/Makefile.in

pcsc-lite/doc/README.DAEMON

pcsc-lite/doc/example

pcsc-lite/doc/example/GPL-2

pcsc-lite/doc/example/Makefile.am

pcsc-lite/doc/example/Makefile.in

pcsc-lite/doc/example/pcsc_demo.c

pcsc-lite/doc/formaticc.1

pcsc-lite/doc/ifdhandler-3.pdf

pcsc-lite/doc/ifdhandler-3.tex

pcsc-lite/doc/pcsc-lite.bib

pcsc-lite/doc/pcsc-lite.pdf

pcsc-lite/doc/pcsc-lite.tex

pcsc-lite/doc/pcscd.8.in

pcsc-lite/doc/reader.conf.5.in

pcsc-lite/etc

pcsc-lite/etc/Makefile.am

pcsc-lite/etc/Makefile.in

pcsc-lite/etc/SmartcardServices

pcsc-lite/etc/StartupParameters.plist

pcsc-lite/etc/pcscd.init.in

pcsc-lite/etc/reader.conf.in

pcsc-lite/etc/update-reader.conf.in

pcsc-lite/install-sh

pcsc-lite/ltmain.sh

pcsc-lite/m4

pcsc-lite/m4/Makefile.am

pcsc-lite/m4/Makefile.in

pcsc-lite/m4/acx_pthread.m4

pcsc-lite/m4/as-ac-expand.m4

pcsc-lite/missing

pcsc-lite/mkinstalldirs

pcsc-lite/src

pcsc-lite/src/Makefile.am

pcsc-lite/src/Makefile.in

pcsc-lite/src/PCSC

pcsc-lite/src/PCSC/debuglog.h

pcsc-lite/src/PCSC/dyn_generic.h

pcsc-lite/src/PCSC/ifdhandler.h

pcsc-lite/src/PCSC/parser.h

pcsc-lite/src/PCSC/pcsclite.h

pcsc-lite/src/PCSC/pcsclite.h.in

pcsc-lite/src/PCSC/sys_generic.h

pcsc-lite/src/PCSC/thread_generic.h

pcsc-lite/src/PCSC/winscard.h

pcsc-lite/src/PCSC/wintypes.h

pcsc-lite/src/README_INTERNALS.txt

pcsc-lite/src/atrhandler.c

pcsc-lite/src/atrhandler.h

pcsc-lite/src/configfile.c

pcsc-lite/src/configfile.h

pcsc-lite/src/configfile.l

pcsc-lite/src/debuglog.c

pcsc-lite/src/dyn_hpux.c

pcsc-lite/src/dyn_macosx.c

pcsc-lite/src/dyn_unix.c

pcsc-lite/src/dyn_win32.c

pcsc-lite/src/eventhandler.c

pcsc-lite/src/eventhandler.h

pcsc-lite/src/hotplug.h

pcsc-lite/src/hotplug_generic.c

pcsc-lite/src/hotplug_libusb.c

pcsc-lite/src/hotplug_linux.c

pcsc-lite/src/hotplug_macosx.c

pcsc-lite/src/ifdwrapper.c

pcsc-lite/src/ifdwrapper.h

pcsc-lite/src/libpcsclite.pc.in

pcsc-lite/src/pcscdaemon.c

pcsc-lite/src/powermgt_generic.c

pcsc-lite/src/powermgt_generic.h

pcsc-lite/src/powermgt_macosx.c

pcsc-lite/src/prothandler.c

pcsc-lite/src/prothandler.h

pcsc-lite/src/readerfactory.c

pcsc-lite/src/readerfactory.h

pcsc-lite/src/strlcat.c

pcsc-lite/src/strlcpy.c

pcsc-lite/src/strlcpycat.h

pcsc-lite/src/sys_unix.c

pcsc-lite/src/testpcsc.c

pcsc-lite/src/thread_unix.c

pcsc-lite/src/thread_win32.c

pcsc-lite/src/tokenparser.c

pcsc-lite/src/tokenparser.l

pcsc-lite/src/utils

pcsc-lite/src/utils/Makefile.am

pcsc-lite/src/utils/Makefile.in

pcsc-lite/src/utils/README

pcsc-lite/src/utils/formaticc.c

pcsc-lite/src/utils/installifd.c

pcsc-lite/src/utils/sample.ibm

pcsc-lite/src/utils/sample.in

pcsc-lite/src/utils/sample.out

pcsc-lite/src/winscard.c

pcsc-lite/src/winscard_clnt.c

pcsc-lite/src/winscard_msg.c

pcsc-lite/src/winscard_msg.h

pcsc-lite/src/winscard_scf.c

pcsc-lite/src/winscard_svc.c

pcsc-lite/src/winscard_svc.h

pcsc-lite/win32

pcsc-lite/win32/Makefile.am

pcsc-lite/win32/Makefile.in

pcsc-lite/win32/PCSC.cpp

pcsc-lite/win32/PCSC.dsp

pcsc-lite/win32/PCSC.h

pcsc-lite/win32/StdAfx.cpp

pcsc-lite/win32/StdAfx.h

pcsc-lite/win32/config.h

pcsc-lite/win32/pthread.h

pcsc-lite/win32/sched.h

pcsc-lite/ylwrap

files modified:
debian/changelog

debian/compat

debian/control

debian/libpcsclite-dev.docs

debian/libpcsclite-dev.examples

debian/pcscd.docs

debian/pcscd.init

debian/rules

debian/update-reader.conf

libmusclecard/Makefile.am

libmusclecard/Makefile.in

libmusclecard/doc/Makefile.in

libmusclecard/doc/muscle-api-1.3.0.pdf

libmusclecard/src/Makefile.am

libmusclecard/src/Makefile.in

libmusclecard/src/PCSC/mscdefines.h

libmusclecard/src/PCSC/musclecard.h

libmusclecard/src/musclecard.c

libmusclecard/src/muscletest.c

libmusclecard/src/tokenfactory.c

libmusclecard/src/tokenfactory.h

libmusclecard/utils/Makefile.in

libmusclecard/utils/bundleTool/Makefile.am

libmusclecard/utils/bundleTool/Makefile.in

libmusclecard/utils/bundleTool/bundleTool.c

Show diffs side-by-side

added added

removed removed

1

SECURITY

2

3

This file discusses security related issues with pcsc-lite and how to

4

handle them.

5

6

Sometimes it is dangerous to run daemons under a root account. If there is

7

a chance to exploit a buffer overflow you can protect sensitive information

8

by running it under a different account. It might be useful to create another

9

user with hardware priveledges and run pcscd as that user. Be sure this user

10

can manipulate the server sockets.

11

12

13

Application suggestions:

14

15

Make sure you Disconnect when you are not using the reader. Also be sure to

16

ReleaseContext before exiting your program.

Older »