View Issue Details

IDProjectCategoryView StatusLast Update
0006943Talerdocumentationpublic2021-08-24 16:22
ReporterChristian Grothoff Assigned Tottn  
Status closedResolutionfixed 
Platformi7OSDebian GNU/LinuxOS Versionsqueeze
Product Versiongit (master) 
Target Version0.8Fixed in Version0.8 
Summary0006943: taler merchant manual should inform admins about private keys in database
DescriptionThe Taler merchant backend stores private keys in the database. This should be made explicit in the Taler merchant operator manual, explaining that the database contains sensitive business (and customer) data including key material, and that hence backups of the database should be properly encrypted and/or otherwise secured against illicit access.
TagsNo tags attached.


Christian Grothoff

2021-07-23 13:24

manager   ~0018006

(Note: this should probably be mentioned in general in the manual, but also again specifically if/when/where we discuss backups.)


2021-07-31 05:00

developer   ~0018036

See commit c8676652f40d5aae733052ba95dd17b56ca4c6ce for a start.
If that's okay, next step is to convert the blurb into a frag
and include it in various places.


2021-07-31 06:36

developer   ~0018037

I believe we can close this bug now, due to these recent commits:

c8676652f4 2021-07-30 add note re database storing private keys / backups SHOULD be encrypted
1081f8bd20 2021-07-30 fix typo: s/unuathorized/unauthorized/
95ab178523 2021-07-30 move note re database to frags
1fd89a2e23 2021-07-31 include frag re database storing sensitive data
e6c3b7bd3a 2021-07-31 include frag re database storing sensitive data

If there are other places where this note should be included, please re-open.

Issue History

Date Modified Username Field Change
2021-07-23 13:24 Christian Grothoff New Issue
2021-07-23 13:24 Christian Grothoff Status new => assigned
2021-07-23 13:24 Christian Grothoff Assigned To => ttn
2021-07-23 13:24 Christian Grothoff Note Added: 0018006
2021-07-31 05:00 ttn Note Added: 0018036
2021-07-31 06:36 ttn Status assigned => resolved
2021-07-31 06:36 ttn Resolution open => fixed
2021-07-31 06:36 ttn Note Added: 0018037
2021-07-31 07:53 Christian Grothoff Product Version => git (master)
2021-07-31 07:53 Christian Grothoff Fixed in Version => 0.8
2021-07-31 07:53 Christian Grothoff Target Version => 0.8
2021-08-24 16:22 Christian Grothoff Status resolved => closed