Commit 45265be2 authored by sajolida's avatar sajolida
Browse files

Document security implications of setting up an administration password

This is another limitation that can only be fixed by switching to
Wayland, like #15635.
parent b148ad20
......@@ -124,7 +124,8 @@ Set an <span class="guilabel">Administration Password</span> to be
able to perform administrative tasks like installing additional
software or accessing the internal hard disks of the computer.
[[See our documentation about the administration password.|administration_password]]
[[See our documentation about the administration password and its
security implications.|administration_password]]
MAC Address Spoofing
--------------------
......
......@@ -8,13 +8,55 @@ For example:
- To [[access the internal hard disks of the computer|doc/encryption_and_privacy/your_data_wont_be_saved_unless_explicitly_asked]]
- To execute commands with <span class="command">sudo</span>
**By default, the administration password is disabled for better security.**
This can prevent an attacker with physical or remote access to your Tails system
to gain administration privileges and perform administration tasks
against your will.
[[!img password-prompt.png link="no" alt="Authentication required: amnesia password (also called *administration password* or *root password*)"]] <!-- Note for translators: the alt tag is useful for SEO. -->
Security implications of setting up an administration password
==============================================================
For better security, no administration password is set up by default.
When you set up an administration password, an attacker who learns your
administration password could be able to break all the security measures
built in Tails:
- Monitor all your activity
- Reveal your IP address
- Access all the data in your Persistent Storage
- Write data to the internal hard disk of the computer
- Install such vulnerabilities permanently on your Tails USB stick
To learn your administration password, an attacker could:
- Watch your keyboard while you type your administration password, for
example through a video surveillance camera, and then accessing
physically your computer before you shut down Tails.
To prevent such an attack:
* Hide your keyboard while typing your administration password in public spaces.
* Never leave your computer unattended while running Tails.
* Learn how to [[quickly shut down Tails|doc/first_steps/shutdown]].
- Exploit a security vulnerability in an application in Tails before
you type your administration password.
For example, an attacker could exploit a security vulnerability in
*Thunderbird* by sending you a [phishing
email](https://ssd.eff.org/en/module/how-avoid-phishing-attacks) that
could wait until you type your administration password and reveal it.
Such an attack is very unlikely but could be performed by a strong
attacker, such as a government or a hacking firm.
To prevent such an attack:
* Only set up an administration password when you need it.
* Always updates to the latest version of Tails to fix known
vulnerabilities as soon as possible.
We have plans to fix the root cause of this problem but it requires
[[!tails_ticket 12213 desc="important engineering work"]].
Set up an administration password
=================================
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment