[SECURITY] Timing Attack Vulnerability in Authentication #20

New issue

Open

opened 2026-02-14 21:24:51 +00:00 by thabeta · 0 comments

thabeta commented 2026-02-14 21:24:51 +00:00

Owner

Copy link

In src/server/auth.rs (Lines 64-68), the password comparison uses a standard string equality check:

if user_data.password != user.password { ... }

Risk: Standard string comparison (!=) returns as soon as a mismatch is found. This allows an attacker to perform a timing attack to guess the password character by character based on how long the server takes to respond.

Fix: Use a constant-time comparison (e.g., from the subtle crate) for all sensitive credential checks.

In `src/server/auth.rs` (Lines 64-68), the password comparison uses a standard string equality check: ```rust if user_data.password != user.password { ... } ``` **Risk:** Standard string comparison (`!=`) returns as soon as a mismatch is found. This allows an attacker to perform a timing attack to guess the password character by character based on how long the server takes to respond. **Fix:** Use a constant-time comparison (e.g., from the `subtle` crate) for all sensitive credential checks.

rawdaGastan self-assigned this 2026-02-16 07:27:27 +00:00

rawdaGastan referenced this issue 2026-02-16 13:38:13 +00:00

development_bugs #24

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

development

feature/workspace-restructuring

development_consistent_bugs

development_bugs

main

develop_buildah

develop_xmon

main_rhai_bindings

v0.0.1

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

rawdaGastan

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

geomind_code/my_fs#20

No description provided.