Installation user guide: improve security guidelines #11517
Labels
c: Documentation
For issues related to in-app product help messages, or to the Matomo knowledge base.
c: Security
For issues that make Matomo more secure. Please report issues through HackerOne and not in Github.
not-in-changelog
For issues or pull requests that should not be included in our release changelog on matomo.org.
Milestone
Suggestions below reported by email
Let me prefix this by saying that I have never installed your product. In large part because of the issues below.
I am basing these security flaws on the current documentation on https://piwik.org/docs/installation/
Configuration is world-writable.
As per the image in:
https://piwik.org/wp-content/uploads/2008/11/2b-check-tofix1.png
The configuration is created world-writable during the installation procedure.
Either this is done by the software (unverified), or by the user following the instruction shown.
MySQL credentials are transmitted over unencrypted HTTP.
There is no mention in the installation instructions of using encryption to safeguard credentials.
There is no alternative method documented to configure the credentials (e.g. editing the configuration and uploading via scp).
Superuser credentials are transmitted over unencrypted HTTP.
There is no mention of safeguarding these credentials either.
The phrase, "by default the super user will be signed up for upgrade and security alerts";
There is no information about the privacy policy.
There is also no mention of whether (or how, or which) user information will be submitted to Piwik when the option is not selected.
Thanks.
The text was updated successfully, but these errors were encountered: