Demystifying Open Source Crash Reporter - An In-depth Security Analysis

Explore an in-depth security analysis of open source crash reporters in this 41-minute conference talk by Seong-Joong Kim from the National Security Research Institute. Delve into the world of automated crash reporting tools, their widespread use across various platforms, and the techniques employed for crash analysis and triage. Examine the Ubuntu Error Tracker system, including apport, whoopsie, and daisy components. Learn about key functions in apport and whoopsie, and gain insights into potential security concerns such as information disclosure. Discover methods to disable core dumping and report uploading for enhanced security. Conclude with a comprehensive understanding of open source crash reporters and their implications for software development and system security.

Intro
More and more software crashes
Fixing the crashes
Crash Reporter: an automated tool Crash
Widely used in various platforms (2/2)
Crash analysis & triage techniques
In this talk...
Ubuntu Error Tracker: apport
Ubuntu Error Tracker: whoopsie
Ubuntu Error Tracker: daisy
Key functions in apport (1/2)
Key functions in whoopsie
Overview (1/2)
Disable core dumping for everyone (2/3)
Disable uploading the report (2/2)
Information disclosure (2/6)
Conclusion