File-hosting Sites Not a Safe Haven For Private Data

An anonymous reader tips a story at the Register, according to which "Academic researchers say they've uncovered weaknesses in dozens of the most popular file hosting sites that allow people to gain unauthorized access to data that's supposed to be available only to those selected by the user."

Encrypt Everything Private

[Deathlizard]

Just another reason why you should be using file encryption such as Truecrypt to encrypt everything personal.

Even if it's on your own hard drive. You're only one rootkit away from giving it away to the world.

Re:Encrypt Everything Private

[x*yy*x]

Crypting your data won't save it from rootkit...

Re:Encrypt Everything Private

[symbolset]

For really private stuff you should upload it to a private photo album on Facebook.

Re:Encrypt Everything Private

[TheEyes]

But in order to actually use encrypted data, it has to be decrypted at some point, so the rootkit just needs to wait for you to decrypt it. In the case of say, full disk encryption, this is rather easy.

The idea is that you encrypt the file you send to the filesharing site, that way when the filesharing site is hacked all the attackers get is an encrypted file. In fact this is a "perfect" use for data encryption: the file is never decrypted on the remote machine, only on your local one, so stealing the data off the remote site can never give an attacker access to anything but cyphertext.

Re:Encrypt Everything Private

[Gaygirlie]

Unless the rootkit records the decryption keys, or changed the algorithm, yes it will.

Rootkit isn't some magical hack everything solution. It is low level access to a machine, bad enough, but not unstoppable.

I don't think you understand what a rootkit actually is. I mean, if your hdd is encrypted then sure, you're pretty safe if someone steals the drive, but the data must still be unencrypted on-the-fly when it's accessed. And gee, that's where the rootkit comes into play. It has access to everything you're doing on your PC so obviously it has access to the unencrypted data, too.

Encryption

[igreaterthanu]

Why would you upload private data to some file hosting site? These (e.g. RapidShare) aren't the kind of services where you can modify files after uploading (such as Dropbox), so encryption is not much of a hassle. You have no reason not to encrypt the files before uploading them.

Re:Encryption

[hairyfeet]

Because you get some dumbass that can't be arsed to bring a flash stick to work and/or they aren't allowed to use a flash stick, so they just upload it to Rapidshit? Hell nobody reads anything or actually thinks anymore, even to this day you can look on any P2P site for the formats that taxes and other personal data are kept in (such as QuickBooks files) and literally find thousands upon thousands of morons sharing their entire C: drive because they don't bother to think.

To me that is the sad and/or scary part: Your security is only as strong as the biggest moron in the group and when it comes to computers the level of stupid out there is frankly mind boggling.

Re:Encryption

[currently_awake]

Considering the cost of hard drives there is no good reason to keep anything in the cloud except for stuff you want to share (free hosting file server).

Re:Encryption

[wvmarle]

Many people for some reason think it's safe because the site says they will protect your data.

Well maybe they can protect your data and will do some effort for it, the fact is you're putting your data on someone else's computer. The owner of that system (basically anyone with high enough privileges or physical access to the system) can access your data. They not necessarily will, but they can. And that little factoid is enough to make it insecure.

That such file hosting sites may have additional security holes allowing access to data one shouldn't have access too, is not important any more. When it's out of your controlled environment, the data is out of your control.

The only way to use remote hosting securely is to either own and directly control the remote hosting site by yourself, or to encrypt everything before it leaves your controlled environment, and keep the secret key to yourself. It's as simple as that. I'm wondering why this is even considered news here.

Re:Bogus

[Beryllium+Sphere(tm)]

At a guess, an embedded URL that's loaded automatically when someone opens the document, for example an IMG tag.

Like Shark Week?

[The+Dawn+Of+Time]

This is the kick-off to Slashdot's "No Shit Week"

Re:Like Shark Week?

Then they could follow up with the quality bunch of Ask Slashdot articles of late:

1. My mouse is at the right edge of the mousepad, but I need to move the cursor right some more. What do I do?
2. Brown smelly stuff came out of my butt. What do I do?
3. I'm running Windows and I install everything I download. Why's my computer so slow?
4. I regularly scratch my balls in the presence of my bosses. Why am I always being fired?
5. Why does code written in India always look like shit?

How about

[Dyinobal]

How about Mediafire? All those other sites seem like general file hosting sites, media fire always seemed to me to lean itself towards personal storage, and private if you choose not to share it. If I recall you have to choose to share each folder/item instead of it being shared automatically. They looked at the most popular sites but what makes those sites more popular is the public sharing aspect.

Re:How about

[wvmarle]

It is on a remote site, out of your control, so it's not secure. End of story.

Encrypt before it leaves your system if you want to keep it secure. Or only store data on such sites that you really don't care if it becomes public.

And even if there really are no remote security holes, anyone with admin/root access to the servers can access your data. Without you knowing.

Re:How about

[gl4ss]

do they provide docs about how they're done their stuff? are the access rights checked everytime someone uses a link to the file? because um some don't. eh heh. saves cpu and infra.

non-story

[Undead+Waffle]

The services, which include sites such RapidShare, FileFactory, and Easyshare, allow users to upload large files and make them available to anyone who knows the unique URI (or Uniform Resource Identifier) that's bound to each one. Users may post the link on websites or forums available to the public or share it in a single email to prevent all but the recipient from downloading it. RapidShare, for instance, says it can be used to “share your data with your friends, colleagues or family.”

But according to academics in Belgium and France, a “significant percentage” of the 100 FHSs (or file hosting services) they studied made it trivial for outsiders to access the files simply by guessing the URLs that are bound to each uploaded file. What's more, they presented evidence that such attacks, far from being theoretical, are already happening in the wild.

Stopped reading right there. It's not private just because the URL is some randomly generated string. These sites are not designed to securely transfer files to only the recipient so this is not in any way a "weakness".

Re:non-story

[Kjella]

Stopped reading right there. It's not private just because the URL is some randomly generated string. These sites are not designed to securely transfer files to only the recipient so this is not in any way a "weakness".

Neither is email, so I guess if you could read everyone's email that wouldn't be a weakness either. Get off your high horse, the URL is supposed to be the equivalent of an email account password, if you have it you can access the files otherwise not. You have to make sure only the right people have the URL, but anything that lets others grab the file anyway is obviously a goatse-class backdoor just as if gmail or hotmail was wide open.

Re:non-story

[blincoln]

"Neither is email, so I guess if you could read everyone's email that wouldn't be a weakness either. Get off your high horse, the URL is supposed to be the equivalent of an email account password, if you have it you can access the files otherwise not. You have to make sure only the right people have the URL, but anything that lets others grab the file anyway is obviously a goatse-class backdoor just as if gmail or hotmail was wide open."

I've heard this argument before, and here's the reason I'm skeptical of it:

The password for an email account or website can be transmitted encrypted, so that even if someone intercepts the communication, they don't know the password. This may not *always* be the case, but its the intent of the systems design in most cases.

Treating the URL as "secret" is different because anything that captures it in-between the client and destination host can record it and use it for any purpose it likes, and it may not even be with malicious intent (because URLs aren't supposed to contain "secret" information).

For example, let's say your company runs both a search engine *and* a free-as-in-not-really-but-close-enough-for-most-people email service. Given all the other parsing of email that your service does to generate "relevant" ads, don't you think it would make sense to look for URLs in emails and add those to the indexer for your search engine? There is still plenty of content online that won't be found by simply spidering websites, because in order to get to it, the user has to submit a form or have javascript executing in an actual DOM or whatever, so doing that would be very likely to increase the amount of useful content indexed by your search engine. But all of a sudden, poof, that "secret" Flickr URL is no longer secret, and anyone uses that search engine can find it.

In terms of more malicious intent, consider that there's nothing stopping Google or Microsoft (or other search engine companies) from hosting a bunch of Tor exit nodes, and adding any URLs that pass through *those* to their search indexers, or paying major corporations to funnel URLs from corporate proxy logs to them for the same purpose. I'm not saying they do either of those things, just that there's no reason they couldn't, and I would have a hard time seeing it as truly "wrong", given that URLs aren't supposed to be treated as secret.

All security is through obscurity

[sco08y]

“These services adopt a security-through-obscurity mechanism where a user can access the uploaded files only by knowing the correct download URIs,” the researchers wrote in a paper presented at the most recent USENIX Workshop on Large-Scale Exploits and Emergent Threats.

Hey, guess how passwords work? They're hard to guess. How do biometrics work? Your fingerprints are hard to replicate. How do keycards work? It's hard to guess whatever code is stored in it. All security ultimately comes down to some token that is "obscure."

All security is through obscurity. If these sites are being accessed when they shouldn't, it means that there's an information leak, that is, the owners think (or claim) that it is far more obscure than it really is.

Re:All security is through obscurity

[DoofusOfDeath]

Hey, guess how passwords work? They're hard to guess.

But when you're using HTTPS, a password is usually passed along a pre-secured channel. Aren't these URI's visible to all routers in between you and the file site, as well as any computer monitoring traffic on your local LAN?

If so, that's somewhat less secure than passwords.

Re:All security is through obscurity

They are different and better than passwords, and they are not lengthy passwords that are stored in files. The entire mechanism of authentication using public-key cryptography is different. When you authenticate with a password, you send the password to the server, which compares it against some stored credential. When you authenticate using a key file or certificate, you take some set of values that usually includes something random from the server, generate a signature, and encrypt it using your private key. The server then decrypts it using your public key and makes sure the signature is correct. Your "lengthy password in a file" is never sent to the server, no representation of it is ever stored on the server, and the value you send for authentication cannot be intercepted and reused on the same server or any other.

I doubt there is anyone that thinks certificates or keys are less valuable than passwords if compromised, they just realize they are less likely to be compromised.

Re:All security is through obscurity

[sco08y]

Hey, guess how passwords work? They're hard to guess.

But when you're using HTTPS, a password is usually passed along a pre-secured channel. Aren't these URI's visible to all routers in between you and the file site, as well as any computer monitoring traffic on your local LAN?

If so, that's somewhat less secure than passwords.

Right, so the normal usage of the terms "secure" and "obscure" is ambiguous. And pardon me if I'm explaining the obvious, but some people definitely don't get it, and the Internet has a desperate need for my opinion.

Obscurity is an intrinsic property of things. A Babe Ruth rookie card is obscure because there aren't many of them. It often, but not always, makes something valuable. Vogon poetry might make a great secret key, but no one would pay for it.

Security is something you impose upon a thing. I can secure the card by locking it in a vault. Security is often achieved through mechanisms, processes or algorithms.

Half of security is keeping others out of your stuff, the other half is letting you in. So the reason I say all security is achieved through obscurity is that the way you let yourself in is through an obscure token.

And some of the confusion comes about because that obscurity has to be secured. Your example of the password over HTTPS is great: if the password is sent by plaintext, it can be a great password, but once it's revealed it's no longer obscure, and the whole system is broken. That's an example of an information leak.

Re:So what you're telling me is...

[sco08y]

That link I posted to a rar full of my favorite pr0n pics on /b/ is easy pickings to thousands of other online users? No wai!

I mean, I had no idea most people who used quick upload services like imgur, rapidshare, and mediafire uploaded most of their files with any implied expectancy of privacy. But boy was I wrong!

That was my initial reaction, but on second thought I think it is fairly newsworthy.

The Register's audience is regular users, who do stuff like put sensitive documents on a file sharing site. It's worth a few paragraphs to remind people not to do idiotic things.

It's also worth noting that these sites either a. have index pages turned on and don't know it, which would be so incompetent as to make me wonder how they keep a file server running or b. are allowing these pages to be crawled and telling their users that they aren't, which is unethical as hell and possibly illegal.

Re:Bogus

[Opyros]

I suspect it means a Web bug, aka a Web beacon.

Wrong.

It is safer and better.

In a contest of brute force, SSH keys are exponentially superior to passwords. You're not going to get passwords to have the same resistance. Period.

Not to mention, keyed access removes a great deal of moronic IT bullshit regarding password policies - you know, the policies that lead to weak passwords, lead to users actively subverting those policies ("Fuck this monthly change shit, I'm using p4ssword02. And next month, I'll use p4ssword03.", et cetera.

Re:No, sir. You are wrong.

[0123456]

One of the main problems with keys is that they're much too long for most users to remember, so they almost always end up stored in a file or database of some sort. This act alone reduces the overall security far, far more than the risk of a brute-force attack.

Uh, no it doesn't. You not only have to get into my machine to find the key file, you also have to break the passphrase on that key file.

So at worst it's no less secure than a password, and at best it's far more secure.

Re:No, sir. You are wrong.

[icebraining]

Brute-force attacks should never be an issue, regardless of whether passwords or keys are being used. Even shitty authentication systems will lock accounts after a small number of failures, or will at least introduce an exponential delay between subsequent attempts. If you can only perform 20 failed logins per day, if not fewer, for a given account, then it will significantly reduce the potential of a successful brute-force attack.

If that was implemented for SSH on a Internet facing machine, nobody could ever log on, the accounts would be always locked.
And if it's 20 failed logins per IP, then it's useless, since many attackers use botnets.

One of the main problems with keys is that they're much too long for most users to remember, so they almost always end up stored in a file or database of some sort. This act alone reduces the overall security far, far more than the risk of a brute-force attack. Given that they're often stored in common locations, even on different installations of different operating systems, all it takes are slightly incorrect permissions on a user's home directory and their keys are easily accessible. It gets worse if the system or home directory is periodically backed up, with the key being propagated (perhaps unknowingly!) to other media and locations,.

That's why keys have - wait for it - passphrases!

You Have to Encrypt It Yourself

[billstewart]

The recent complaints about Dropbox and similar file storage sites violating users' privacy in return to lawsuits is because the site is doing the encryption, not the user.

• The user uploads unencrypted data to the site across an encrypted SSL tunnel. W00t! We're R333713 S3kr1t Heer!
• The site unpacks the tunnel and stores the data, possibly encrypted using a key they know, or possibly just with passwords to keep unauthorized users out.
• The receiving user gives the site a password, and the site gives the user the again-unencrypted data over another R3333713 S3kr1t encrypted SSL tunnel. ,li>The FBI hands the Storage site a subpoena or warrant or National Security Letter or a note from their mom, and the site hands over the stored data and any keys they have, along with the transaction records from the upload.

If you want to protect your data, you can never hand the storage site unencrypted data, and this includes handing them encrypted data along with the keys. Ideally, depending on the kind of security you're looking for, you'd like their storage system not to store files in ways that are easily traced back to you (for instance, the file gets stored with a filename that's a random string, and the storage site forgets who it belongs to after storing the file, so that anybody who steals the disk drive only knows that there are files named "bunch of random digits", and has know way to know which ones belong to which users. Anybody who wants to recover the file needs to know the filename (so the service can retrieve it) and the decryption key (which the service doesn't know.)

Re:So what you're telling me is...

[billstewart]

There are lots of services like Dropbox and Evernote and Pick-your-favorite-Online-Backup-Service that are focused on people storing their own data or on data they're only going to share with a small number of people (e.g. web upload/download instead of FTP, for people behind firewalls or with random DHCP addresses), and many of them give their users the idea that they're getting privacy. It's different from the Youtube-without-censorship file upload site market.

Confucius Say...

[seven+of+five]

"He who trusts private data to remote host has head in cloud..."

Re:So what you're telling me is...

[Nursie]

"The Register's audience is regular users"

El Reg?

Hardly.

Gamers and tech heads, through IT folk, security researchers and software engineers. It's got articles for everyone. It's often more hardcore than slashdot these days, which says more about the decline of slashdot than anything else...

For those saying "Well, duh!"

[jimicus]

Part of the issue is how these sites market themselves. Many sell themselves as "a fast, easy, secure way to send files to friends and colleagues without being hit by such bothersome things as email size limits or limits on sending executables".

The security they provide varies. Some allow you to password-protect the download (so nobody's getting it without entering the password first). Others don't do this, the security stems from the URL they give you to include in the email being apparently-random and not published anywhere. Security through obscurity, in other words. To you and me, this is a disaster waiting to happen, but these products aren't being used by you and me. They're being used by others in the business who are annoyed that the IT department is blocking them from sending out a particular attachment, and rather than ask the IT department to come up with a solution are instead using such a service. It's actually pretty common for these companies to offer corporate accounts so you can give your users a solution which is branded with your company name and logo and allows you to enforce rules regarding what options users may choose when they come to send a file. But corporate accounts cost money, getting the money means setting up a project and will take a minimum of a couple of months. This file needs to reach the recipient in a couple of hours.

These researchers have demonstrated that not only are the URLs generated not particularly random, they're easy to guess and people are already guessing them left and right.

Security-by-obscurity

[js_sebastian]

While you have a point that many security methods such as passwords rely on 'obscurity', one can still make a distinction between methods which rely on poorly measured (and typically low) entropy and methods which rely on well defined entropy. Usually when people talk about the dangers of security through obscurity, they are talking of the former;...

No. Security by obscurity means security achieved by keeping the details of your system secret (architecture, algorithms, etc), so people don't know how to break in. The accepted way to do security, on the other hand, is to build a system that is secure even against adversaries who know everything about your system, lacking only a well defined credential or set of credentials (a password, certificate, fingerprint, etc).

Using "secret" urls to provide access is not security by obscurity if there is enough randomness involved that urls are practically unguessable, though if it does not go over HTTPs it is certainly weak against certain threat models (Man-in-the-middle).