[wp-trac] [WordPress Trac] #39309: Secure WordPress Against Infrastructure Attacks
WordPress Trac
noreply at wordpress.org
Wed Mar 6 04:39:57 UTC 2019
#39309: Secure WordPress Against Infrastructure Attacks
------------------------------------------+-----------------------
Reporter: paragoninitiativeenterprises | Owner: pento
Type: enhancement | Status: assigned
Priority: normal | Milestone: 5.2
Component: Upgrade/Install | Version: 4.8
Severity: critical | Resolution:
Keywords: has-patch | Focuses:
------------------------------------------+-----------------------
Comment (by dd32):
Replying to [comment:58 dd32]:
> Replying to [comment:57 paragoninitiativeenterprises]:
> > Additionally, SHA384 is the best possible hash function for PHP <7.1
support.
Just as a quick mention for that, the implementation supports
WordPress.org presenting multiple signatures, It could in the future
present a `sha384` signature (for back-compat) and a `sha512/224`
signature (for newer WordPress's).
It doesn't currently have any field in the signature to specify the
algorithm of the signature, it'd just attempt to verify `Signature New`
against `Old Algo hash` and then attempt to verify `Signature Old` against
`Old Algo hash`.
I think there's a case to be made that the provided signatures should
identify the hash algorithm it's for, but realistically I don't believe
we'd have a reason to unless there was a serious vulnerability found in
the hash. As it accepts multiple signatures we'd just switch newer
WordPress to use the updated hash algorigthm, and have WordPress.org
providing the older hash signatures for a time-period.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/39309#comment:59>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list