Our storage directory /var/lib/peekaboo contains highly sensitive data but is currently world-readable. Particularly .cuckoo/conf/cuckoo.conf contains the database password and must not be readable by anyone other than the Peekaboo (or Cuckoo) runtime user. But also in-flight or archives malware samples as well as analyses reports should be kept private to peekaboo.
Our storage directory
/var/lib/peekaboo
contains highly sensitive data but is currently world-readable. Particularly.cuckoo/conf/cuckoo.conf
contains the database password and must not be readable by anyone other than the Peekaboo (or Cuckoo) runtime user. But also in-flight or archives malware samples as well as analyses reports should be kept private to peekaboo.