PrivateBin

This release fixes a low entropy key vulnerability in PrivateBin affecting legacy browsers

On 31st of July 2018, @cryptolok reported a cryptographic vulnerability in PrivateBin due to the incorrect use of SJCL when used on very old browsers. When creating a paste using any ZeroBin version or PrivateBin up to and including 1.1.1 on a browser without web crypto API support (Firefox<21, Chrome<15, Safari<5, IE<11) the key may have been generated without sufficient entropy. PrivateBin 1.2 was not affected, because the support for those browser versions got removed in the JS refactoring.

This release re-adds support for those legacy browsers and ensures they generate the key with sufficient entropy. In the next release of PrivateBin we will permanently drop legacy browser support and switch to the web crypto API exclusively. This release ensures that there is at least one release available that supports both legacy browsers and has the entropy issue fixed.

Further details on this is an issue and its implications can be found in our report on the vulnerability. It also describes methods to check if your browser is currently affected by the issue. If it is, please consider updating your browser.

Benefits of switching to the new release

If you are still using PrivateBin version 1.1.1 or ZeroBin, upgrading to this release will ensure that you retain legacy browser support and fix the low entropy key vulnerability in your current version. If you already upgraded to PrivateBin 1.2 and don't need to support these very old browser versions (released before October 2013) then you could consider skipping this release.

Update procedure

As usual, you can download the archive for a manual upgrade and can find more details in the installation instructions.

We also offer a Docker container that includes the recommended secure setup with the non-essential files and data outside of the web servers document root.

Note that this is the first release that is signed with the new signing key (fingerprint: 28CA 7C96 4938 EA5C 1481 D42A E11B 7950 E9E1 83DB). This key is intended to be used for signing releases from now on.

Changes since version 1.2

• ADDED: Add support for mega.nz links in pastes and comments (#331)
• CHANGED: Added some missing Russian translations (#348)
• CHANGED: Minor PHP refactoring: Rename PrivateBin class to Controller, improved logic of some persistence classes (#342)
• CHANGED: Upgrading DOMpurify library to 1.0.7
• FIXED: Ensure legacy browsers without webcrypto support can't create paste keys with insufficient entropy (#346)
• FIXED: Re-add support for old browsers (Firefox<21, Chrome<31, Safari<7, IE<11), broken in 1.2, will be removed again in 1.3

This release adds QR code generation, inline display of video, audio, PDF and new translations to PrivateBin and a large refactoring of the JavaScript code.

A new button lets you generate a QR code of your newly created pastes URL. This allows for easy transfer of a pasted data from one mobile device to another.

When the optional file upload is enabled, uploaded videos, audio files and PDFs are displayed inline, like we did with images, as long as the visitors browser supports it. By default the file and paste upload is limited to a 2 MiB size.

Translations for Spanish, Occitan, Norwegian, Portuguese, Dutch and Hungarian have also been added since the last release.

The main change of this release, and the reason it took us so long since doing the last one, was the large refactoring and cleanup of the JavaScript logic of PrivateBin. The refactoring itself was done in early 2017. In parallel we introced mocha and JSverify running on nodeJS as a property based unit testing framework for the logic (à la QuickCheck). Many months were spent to cover more and more pieces of the logic.

In the end we covered all of the modular parts of the logic (879 of 1273 lines of code for a 69% code coverage), including the encryption wrapper functions for backward compatibility with older paste formats. The UI related parts of the code proved difficult to test, partly because in nodeJS the browsers document object model (DOM) is emulated using the JSdom library, the lack of an actual view port being present (so no scrolling, for example) and also due the event driven nature which contradicts the modular approach of unit testing. For many UI interfaces, large parts of the DOM has to be present, since emitting a single click event may trigger changes in many different parts of the UI. This is a shortcoming of the current structure of the UI logic, which we may need to improve further.

Still, the unit testing found many regressions and some issues that have been in the code for a long time without having been reported. It lays the necessary ground work for the future changes, especially the major changes planned for the encryption format.

Benefits of switching to the new release

Apart from the new QR code feature many new translations were added. All used libraries were upgraded, too. While no security issues were reported for any of these, they address some bugs that didn't affect us directly or improve compatibility with the latests browsers and PHP releases.

Update procedure

A new configuration option name was introduced for those admins that like to replace the "PrivateBin" moniker in the template with their own site name.

As usual, you can download the archive for a manual upgrade and can find more details in the installation instructions.

We now also offer a Docker container that includes the recommended secure setup with the non-essential files and data outside of the web servers document root. We also started providing additional tools in Docker containers.

Changes since version 1.1.1

• ADDED: Translations for Spanish, Occitan, Norwegian, Portuguese, Dutch and Hungarian
• ADDED: Option in configuration to change the default "PrivateBin" title of the site
• ADDED: Added display of video, audio & PDF, drag & drop, preview of attachments (#182)
• ADDED: QR code generation (#169)
• ADDED: Introduced DOMpurify library to sanitize generated HTML before display (#183)
• CHANGED: Force JSON request for getting paste data & password retry (#216)
• CHANGED: Minimum required PHP version is 5.4 (#186)
• CHANGED: Shipped .htaccess files were updated for Apache 2.4 (#192)
• CHANGED: Cleanup of bootstrap template variants and moved icons to img directory
• CHANGED: Removed option to hide clone button on expiring pastes, since this requires reading the paste for rendering the template, which leaks information on the pastes state
• CHANGED: Upgrading libraries to: SJCL 1.0.7, jQuery 3.3.1, Base64 2.4.5, Showdown 1.8.6, DOMpurify 1.0.5 & Prettify 453bd5f
• CHANGED: Refactored JavaScript code, making it modular with private and public functions, making it much easier to maintain (#178)
• FIXED: To counteract regressions introduced by the refactoring, we finally introduced property based unit testing for the JavaScript code, this caught several regressions, but also some very old bugs not found so far (#32)

More details about the plans for future releases and on how you can help the project achieve them, can be found in the PrivateBin version 1.2 release announcements.

This release fixes leakage of configuration and raw pastes that can occur in some setups.

On 29th of September, @pstn reported a medium data leak vulnerability in PrivateBin. If either a) a non-apache webserver is used or b) apache has "AllowOverride" disabled and the installation was not secured by changing the path of sensitive folders, these can be accessed from the outside. This release fixes this by converting these files from INI/JSON to php files, so that they are protected even under those conditions.

Further details on why this is an issue and its implications can be found in our report on the vulnerability. It also describes methods to check if your server is currently affected by the issue.

Benefits of switching to the new release

Even if you are currently using an apache server and are not affected by this issue, we would advise to plan to update soon. Some of the sites affected by this reported that they had changed their webserver setup, inadvertedly becoming affected. You might do the same in the future, too, and forget to check your PrivateBin setups security.

Alternatively consider to securing your installation by changing the path of folders containing sensitive information. We have updated our installation instructions, stressing our security recommendations.

Update procedure

Apart from updating the libraries and the javascript files, make sure that your PHP process can also write to the cfg folder. The next call to your privatebin installation will convert the conf.ini file into conf.php. Accessing pastes will convert these, too. Additionally we also are hooking into the purge mechanism to gradually convert pastes that are not frequently accessed.

Note: @rugk has updated his expired pgp key. The fingerprint stayed the same, but you may need to update it.

Changes since version 1.1

• CHANGED: Switched to .php file extension for configuration and data files, to avoid leaking data in unprotected installations.

This release adds Italian and Russian translations to PrivateBin and fixes an XSS and a database issue.

Fortunately the CSP headers introduced in version 1.0 suppressed the XSS issue in modern browsers. But older browsers would still be affected when clicking on the "Raw text" button of a markdown formatted paste containing JavaScript. The issue was introduced with the change in version 1.0 that displays markdown code instead of the rendered HTML in the "raw" mode.

The other fixed issue concerns the automatic purging of outdated pastes, which was introduced in version 1.0. When using the database model instead of the default file based store, pastes set to "never" expire were always purged, too.

Benefits of switching to the new release

If you are using the database model instead of the filesystem one and offer pastes that "never" expire, then you should upgrade or disable the purge by setting the batchsize to 0 in your configuration.

Apart from fixing the XSS issue, markdown pastes containing HTML code will now be properly displayed in the "raw" mode.

Both of these issues affected only version 1.0. There are of course many more benefits in switching to this release, if you are still using a version of PrivateBin or ZeroBin before 1.0.

Update procedure

When updating please make sure to adjust the cspheader setting. We recommend you to either comment the setting out in order to use our default recommend CSP header or adjust the header so it matches the new default one (mainly just add the referrer no-referrer; part).

Changes since version 1.0

• ADDED: Translations for Italian and Russian
• ADDED: Loading message displayed until decryption succeeded for slower (in terms of CPU or network) systems
• ADDED: Dockerfile for docker container creation
• CHANGED: Using modal dialog to request password input instead of native JS input window (#69)
• CHANGED: Suppressed referrer HTTP header sending when following links in a paste or comment (#96) and added additional HTTP headers for XSS mitigation (#91)
• CHANGED: Updated random_compat and jQuery libraries
• FIXED: XSS using JavaScript stored as markdown formatted paste, after clicking on Raw paste button (related to #137)
• FIXED: Automatic purging deleting non-expiring pastes, when using database store (#149)

We wish you a happy new year!

This is the first release of PrivateBin after renaming the ZeroBin fork. We decided to use the version number 1.0 for this release as we consider PrivateBin now very mature and feature complete. We recommend everyone to update as this version features many security improvements.

The renaming of ZeroBin to PrivateBin is done to highlight the huge developments (over 500 commits) which have happened since ZeroBin stopped being actively maintained by its original creator Sébastien Sauvage in 2014. By choosing to release version 1.0 we also want to emphasize the many feature changes - according to semantic versioning - and want to show that PrivateBin is now considered mature. Hence a version number smaller than 1.0 just does not seem suitable for PrivateBin anymore.

Update procedure

Make sure your system has some source for cryptographically safe random numbers! Either use PHP 7 or one of the supported fallbacks: libsodium, open_basedir access to /dev/urandom, mcrypt or com_dotnet. The previous workaround using mt_rand() was removed, as it leads to unsafe and predictable numbers.

Otherwise, as usual, only the files need to be updated. The tmp folder for the compiled RainTPL templates can be removed, since we switched to a more lightweight template approach due to RainTPL not being maintained anymore. Have a look at or template documentation to learn how to upgrade your custom template to the new system.

There are some new options in the configuration file. If you are updating from an older ZeroBin install and want to keep existing pastes accessible, make sure to enable the option zerobincompatibility. Otherwise more secure settings are used which break compatibility with ZeroBin.

Benefits of switching to the new release

As a user of a ZeroBin instance nothing changes. As soon as the server administrator upgrades to PrivateBin, you can continue using it. We took great efforts to ensure that existing pastes are still fully compatible with the current release.

Since version 0.22 we added a Slowene and Chinese translation, an (optional) URL shortener button, a preview tab to help you chose the right format for your content and many other small user interface improvements to make your life a bit more comfortable.

With this release we have improved the security of PrivateBin as we have now addressed most concerns raised in a security audit of the original ZeroBin in 2014.

Furthermore we switched to AES Galois/Counter mode, which is considered a stronger encryption mode then the previously used AES Counter mode with CBC-MAC authentication. The main benefit here is that the authentication (as the pastes/comments are sent over network you want to ensure that your content is not accidentally or maliciously manipulated) is done on the encrypted text instead of the plain text. The potential parallelization of CCM could not be implemented in the single threaded Javascript environment of webbrowsers, anyway.

We also make use of a new browser security feature called Content Security Policy, which prevents XSS attacks in an effective way. It blocks any third party scripts and resources to be executed in the context of the application.

Additionally we started using the new subresource integrity (SRI) browser feature to avoid loading manipulated scripts under man-in-the-middle attacks. Additionally this allows privacy aware users to easily check for manipulated scripts in the source code of the website and to compare them to the hashes of the official PrivateBin release of that version.

To ensure that PrivateBins code is of high quality we added various code quality checkers and subsequently improved the code. These analysers also helped us to find some potential vulnerabilities.

If you have further questions or issues have a look at the new FAQ.

Changes since version 0.22

• ADDED: Translations for Slowene and Chinese
• ADDED: re-introduced (optional) URL shortener support, which was removed back in version 0.16 for privacy concerns
• ADDED: Preview tab, helpful for writing markdown code or check the source code rendering
• ADDED: Automatic purging of expired pastes, done on paste creation
• ADDED: Option to disable icons in discussions (will only affect newly created pastes)
• ADDED: Composer support
• CHANGED: Renamed the ZeroBin fork to PrivateBin
• CHANGED: Removed unmaintained RainTPL template engine, replacing the templates with straight forward PHP files
• CHANGED: New logo and favicons
• CHANGED: Upgrading SJCL library to 1.0.4
• CHANGED: Switched to GCM instead of CCM mode for AES encryption for newly created pastes
• CHANGED: Use backported random bytes function from PHP7 for older PHP versions instead of mcrypt
• CHANGED: Switched to a SHA256 HMAC of the IP in traffic limiter instead of storing it in plain text on the server
• CHANGED: Introduced content security policy header to reduce cross site scripting (XSS) risks
• CHANGED: Added SHA512 subresource integrity hashes for all javascript includes to reduce the risk of manipulated scripts and easier detection of such
• CHANGED: Refactored PHP code to conform to PSR-4 and PSR-2 standards
• CHANGED: Switched to Identicons as the default for comments with nicknames
• CHANGED: Vizhash is now optional and based on (128 byte) SHA512 HMAC instead of (144 byte) combination of MD5, SHA1 and a reversal of that string
• FIXED: Content-type negociation for HTML in certain uncommon browser configurations
• FIXED: JavaScript error displayed before page is loaded or during attachment load
• FIXED: Don't strip space characters at beginning or end of optional password
• FIXED: Various UI glitches in mobile version or on smaller desktops with language menu, button spacing and long URLs
• FIXED: Back button now works as expected after switching to raw text view of a paste
• FIXED: Reactivated second error message above send comment button to ensure its visibility when the main error message is outside the viewport
• FIXED: Raw text now displays original markdown instead of rendered HTML
• FIXED: Removed unused code detected with the help of various code review tools
• FIXED: Table format for PostgreSQL, making it possible to use PostgreSQL as backend in addition to MySQL, SQLite and flat files

We hope you will enjoy the new PrivateBin!

• ADDED: Tab character input support
• ADDED: Dark bootstrap theme
• ADDED: Option to hide clone button on expiring pastes
• ADDED: Option to set a different default language then English and/or enforce it as the only language
• ADDED: Database now contains version to allow automatic update of structure, only if necessary; removing database structure check on each request
• ADDED: Favicons
• FIXING: Regressions in database layer, prohibiting pastes from being stored
• FIXING: Fixing "missing" comments when they were posted during the same second to the same paste
• FIXING: JS failing when password input disabled
• CHANGED: Switching positions of "New" and "Send" button, highlighting the latter to improve workflow
• CHANGED: Renamed config file to make updates easier
• CHANGED: Switching to JSON-based REST-API
• CHANGED: Database structure to store attachments, allowing larger attachments to be stored (depending on maximum BLOB size of database backend)
• CHANGED: Refactored data model, traffic limiting & request handling

This minor release addresses an issue with the database store in version 0.21. If you use the database model please consider updating.

• FIXING: lost meta data when using DB model instead of flat files
• FIXING: mobile navbar getting triggered on load
• CHANGED: database table "paste" gets automatically extended with a "meta" column
• CHANGED: navbar of "bootstrap" template now spans full width of view port on large screens

• ADDED: Translations for German, French and Polish, language selection
  menu (optional)
• ADDED: File upload and image display support (optional)
• ADDED: Markdown format support
• ADDED: "bootstrap-compact" template that hides some of the options in
  a drop down menu to ensure the nav bar fitting on one line on smaller
  screen sizes
• FIXING: Various usability issues with different screen sizes / device
  types in the "bootstrap" template
• CHANGED: Instead of having different options to enable and preselect
  certain formats there is now a generic [formatter_options] section
  where formats can be added to the displayed format drop down menu. A
  defaultformatter can be set, it defaults to "plaintext". The
  syntaxhighlighting configuration got deprecated.
• zerobin.js got a major refactoring:
  • moved from global namespace into anonymous function
  • events are no longer set via "onclick" attributes in the templates,
    but bound by from JS side
  • for simpler maintenance the functions were grouped into objects:
    zerobin (display logic, event handling), filter (compression,
    encryption), i18n (translation, counterpart of i18n.php) and helper
    (stateless utilities)
• Wiki pages were added to address common topics:
  • Upgrading from ZeroBin 0.19
    Alpha
  • ZeroBin Directory of public
    servers
  • Translation
  • Templates

• ADDED: Password protected pastes (optional)
• ADDED: configuration options for highlighting, password, discussions, expiration times, rate limiting
• ADDED: JSON-only retrieval of paste incl. discussion, used to be able to refresh paste when posting a comment
• ADDED: bootstrap CSS based template
• CHANGED: "Burn after reading" pastes are now deleted only after the paste was successfully decrypted via callback. This prevents accidental deletion by chatbots following URLs and the like. Usage of a password is suggested to ensure only the desired recipient is able to encrypt it.
• CHANGED: the "opendiscussion" option now only controls if the discussion checkbox is preselected. Use "discussion = false" to disable the discussion feature completely (which also removes the checkbox from the template).
• FIXING: Behaviour of several conflicting configuration options. As a general measure unit tests for 9 of the options and all their possible configurations were added via a unit test generator.
• updated JS libraries: jquery to 1.11.3, sjcl to 1.0.2, base64.js to 2.1.9, deflate to 0.5, inflate to 0.3 and prettify to latest
• generally improved documentation, both inline phpdoc / JSdoc source code documentation, as well as Wiki pages on installation, configuration, development and JSON-API

• Corrected XSS security flaw which affected IE<10. Other browsers were not affected.
• Corrected spacing display in IE<10.

• ADDED: The resulting URL is automatically selected after pressing "Send". You just have to press CTRL+C.
• ADDED: Automatic syntax highlighting for 53 languages using highlight.js
• ADDED: "5 minutes" and "1 week" expirations.
• ADDED: "Raw text" button.
• jQuery upgraded to 1.9.1
• sjcl upgraded to GitHub master 2013-02-23
• base64.js upgraded to 1.7
• FIXED: Dates in discussion are now proper local dates.
• ADDED: Robot meta tags in HTML to prevent search engines indexing.
• ADDED: Better json checking (including entropy).
• ADDED: Added version to js/css assets URLs in order to prevent some abusive caches to serve an obsolete version of these files when ZeroBin is upgraded.
• "Burn after reading" option has been moved out of Expiration combo to a separate checkbox. Reason is: You can prevent a read-once paste to be available ad vitam eternam on the net.