Security
Token
There is no security token.
Firewall
main
Name
Security enabled
Stateless
Configuration
| Key | Value |
|---|---|
| provider | security.user.provider.concrete.app_user_provider |
| context | main |
| entry_point | App\Security\KbinAuthenticator |
| user_checker | App\Security\UserChecker |
| access_denied_handler | (none) |
| access_denied_url | (none) |
| authenticators | [ "two_factor" "remember_me" "App\Security\KbinAuthenticator" "App\Security\FacebookAuthenticator" "App\Security\GoogleAuthenticator" "App\Security\GithubAuthenticator" "App\Security\KeycloakAuthenticator" ] |
Listeners
| Listener | Duration | Response |
|---|---|---|
Symfony\Component\Security\Http\Firewall\ChannelListener {#723 -map: Symfony\Component\Security\Http\AccessMap {#722 …} -logger: Monolog\Logger {#783 …} -httpPort: 80 -httpsPort: 443 } |
0.00 ms | (none) |
Symfony\Component\Security\Http\Firewall\ContextListener {#706 -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\TokenStorage {#1017 …} -sessionKey: "_security_main" -logger: Monolog\Logger {#783 …} -userProviders: Symfony\Component\DependencyInjection\Argument\RewindableGenerator {#705 …} -dispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …} -registered: false -trustResolver: Scheb\TwoFactorBundle\Security\Authentication\AuthenticationTrustResolver {#780 …} -sessionTrackerEnabler: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage::enableUsageTracking(): void {#703 …} } |
0.95 ms | (none) |
Symfony\Component\Security\Http\Firewall\AuthenticatorManagerListener {#584 -authenticatorManager: Symfony\Component\Security\Http\Authentication\AuthenticatorManager {#595 …} } |
0.00 ms | (none) |
Scheb\TwoFactorBundle\Security\Http\Firewall\TwoFactorAccessListener {#582 -twoFactorFirewallConfig: Scheb\TwoFactorBundle\Security\TwoFactor\TwoFactorFirewallConfig {#842 …} -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -twoFactorAccessDecider: Scheb\TwoFactorBundle\Security\Authorization\TwoFactorAccessDecider {#581 …} } |
0.06 ms | (none) |
Symfony\Component\Security\Http\Firewall\AccessListener {#579 -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -accessDecisionManager: Symfony\Component\Security\Core\Authorization\TraceableAccessDecisionManager {#937 …} -map: Symfony\Component\Security\Http\AccessMap {#722 …} } |
0.00 ms | (none) |
Symfony\Component\Security\Http\Firewall\LogoutListener {#786 -tokenStorage: Symfony\Component\Security\Core\Authentication\Token\Storage\UsageTrackingTokenStorage {#1018 …} -options: [ "csrf_parameter" => "_csrf_token" "csrf_token_id" => "logout" "logout_path" => "app_logout" ] -httpUtils: Symfony\Component\Security\Http\HttpUtils {#841 …} -csrfTokenManager: Symfony\Component\Security\Csrf\CsrfTokenManager {#1015 …} -eventDispatcher: Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher {#747 …} } |
0.00 ms | (none) |
Authenticators
No authenticators have been recorded. Check previous profiles on your authentication endpoint.
Access Decision
affirmative
Strategy
Access decision log
| # | Result | Attributes | Object | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1 | DENIED | ROLE_USER | null |
||||||||||||||||||||||||
|
|||||||||||||||||||||||||||
| 2 | DENIED | moderate | App\Entity\EntryComment {#1374 +user: Proxies\__CG__\App\Entity\User {#1882 …} +entry: App\Entity\Entry {#1856 …} +magazine: App\Entity\Magazine {#312 +icon: Proxies\__CG__\App\Entity\Image {#293 …} +name: "selfhosted@lemmy.world" +title: "selfhosted" +description: """ A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n \n Rules:\n \n - Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n - No spam posting.\n - Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n - Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n - No trolling.\n \n Resources:\n \n - [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n - [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n - [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n \n > Any issues on the community? Report it using the report flag.\n \n > Questions? DM the mods! """ +rules: null +subscriptionsCount: 1 +entryCount: 222 +entryCommentCount: 3916 +postCount: 0 +postCommentCount: 0 +isAdult: false +customCss: null +lastActive: DateTime @1729582735 {#320 : 2024-10-22 09:38:55.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#284 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#280 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#269 …} +entries: Doctrine\ORM\PersistentCollection {#227 …} +posts: Doctrine\ORM\PersistentCollection {#185 …} +subscriptions: Doctrine\ORM\PersistentCollection {#247 …} +bans: Doctrine\ORM\PersistentCollection {#164 …} +reports: Doctrine\ORM\PersistentCollection {#150 …} +badges: Doctrine\ORM\PersistentCollection {#128 …} +logs: Doctrine\ORM\PersistentCollection {#118 …} +awards: Doctrine\ORM\PersistentCollection {#107 …} +categories: Doctrine\ORM\PersistentCollection {#94 …} -id: 120 +apId: "selfhosted@lemmy.world" +apProfileId: "https://lemmy.world/c/selfhosted" +apPublicUrl: "https://lemmy.world/c/selfhosted" +apFollowersUrl: "https://lemmy.world/c/selfhosted/followers" +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "selfhosted" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1703473826 {#321 : 2023-12-25 04:10:26.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1703473826 {#315 : 2023-12-25 04:10:26.0 +01:00 } } +image: null +parent: Proxies\__CG__\App\Entity\EntryComment {#2356 …} +root: Proxies\__CG__\App\Entity\EntryComment {#2356 …} +body: """ I have been thinking the same thing.\n \n I have been looking into a way to copy files from our servers to our S3 backup-storage, without having the access-keys stored on the server. (as I think we can assume that will be one of the first thing the ransomware toolkits will be looking for).\n \n Perhaps a script on a remote machine that initiate a ssh to the server and does a “s3cmd cp” with the keys entered from stdin ? Sofar, I have not found how to do this.\n \n Does anybody know if this is possible? """ +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1704636907 {#1769 : 2024-01-07 15:15:07.0 +01:00 } +ip: null +tags: null +mentions: [ "@kristoff@infosec.pub" "@MNByChoice@midwest.social" ] +children: Doctrine\ORM\PersistentCollection {#2476 …} +nested: Doctrine\ORM\PersistentCollection {#2288 …} +votes: Doctrine\ORM\PersistentCollection {#2446 …} +reports: Doctrine\ORM\PersistentCollection {#2439 …} +favourites: Doctrine\ORM\PersistentCollection {#2488 …} +notifications: Doctrine\ORM\PersistentCollection {#1841 …} -id: 288705 -bodyTs: "'access':31 'access-key':30 'anybodi':93 'assum':42 'backup':25 'backup-storag':24 'copi':16 'cp':76 'enter':80 'file':17 'first':49 'found':87 'initi':66 'key':32,79 'know':94 'look':11,56 'machin':64 'one':46 'perhap':58 'possibl':98 'ransomwar':52 'remot':63 's3':23 's3cmd':75 'script':60 'server':20,36,71 'sofar':83 'ssh':68 'stdin':82 'storag':26 'store':33 'thing':7,50 'think':4,39 'toolkit':53 'way':14 'without':27" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://infosec.pub/comment/5483590" +editedAt: null +createdAt: DateTimeImmutable @1704636907 {#1969 : 2024-01-07 15:15:07.0 +01:00 } } |
||||||||||||||||||||||||
|
|||||||||||||||||||||||||||
| 3 | DENIED | edit | App\Entity\EntryComment {#1374 +user: Proxies\__CG__\App\Entity\User {#1882 …} +entry: App\Entity\Entry {#1856 …} +magazine: App\Entity\Magazine {#312 +icon: Proxies\__CG__\App\Entity\Image {#293 …} +name: "selfhosted@lemmy.world" +title: "selfhosted" +description: """ A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n \n Rules:\n \n - Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n - No spam posting.\n - Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n - Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n - No trolling.\n \n Resources:\n \n - [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n - [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n - [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n \n > Any issues on the community? Report it using the report flag.\n \n > Questions? DM the mods! """ +rules: null +subscriptionsCount: 1 +entryCount: 222 +entryCommentCount: 3916 +postCount: 0 +postCommentCount: 0 +isAdult: false +customCss: null +lastActive: DateTime @1729582735 {#320 : 2024-10-22 09:38:55.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#284 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#280 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#269 …} +entries: Doctrine\ORM\PersistentCollection {#227 …} +posts: Doctrine\ORM\PersistentCollection {#185 …} +subscriptions: Doctrine\ORM\PersistentCollection {#247 …} +bans: Doctrine\ORM\PersistentCollection {#164 …} +reports: Doctrine\ORM\PersistentCollection {#150 …} +badges: Doctrine\ORM\PersistentCollection {#128 …} +logs: Doctrine\ORM\PersistentCollection {#118 …} +awards: Doctrine\ORM\PersistentCollection {#107 …} +categories: Doctrine\ORM\PersistentCollection {#94 …} -id: 120 +apId: "selfhosted@lemmy.world" +apProfileId: "https://lemmy.world/c/selfhosted" +apPublicUrl: "https://lemmy.world/c/selfhosted" +apFollowersUrl: "https://lemmy.world/c/selfhosted/followers" +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "selfhosted" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1703473826 {#321 : 2023-12-25 04:10:26.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1703473826 {#315 : 2023-12-25 04:10:26.0 +01:00 } } +image: null +parent: Proxies\__CG__\App\Entity\EntryComment {#2356 …} +root: Proxies\__CG__\App\Entity\EntryComment {#2356 …} +body: """ I have been thinking the same thing.\n \n I have been looking into a way to copy files from our servers to our S3 backup-storage, without having the access-keys stored on the server. (as I think we can assume that will be one of the first thing the ransomware toolkits will be looking for).\n \n Perhaps a script on a remote machine that initiate a ssh to the server and does a “s3cmd cp” with the keys entered from stdin ? Sofar, I have not found how to do this.\n \n Does anybody know if this is possible? """ +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1704636907 {#1769 : 2024-01-07 15:15:07.0 +01:00 } +ip: null +tags: null +mentions: [ "@kristoff@infosec.pub" "@MNByChoice@midwest.social" ] +children: Doctrine\ORM\PersistentCollection {#2476 …} +nested: Doctrine\ORM\PersistentCollection {#2288 …} +votes: Doctrine\ORM\PersistentCollection {#2446 …} +reports: Doctrine\ORM\PersistentCollection {#2439 …} +favourites: Doctrine\ORM\PersistentCollection {#2488 …} +notifications: Doctrine\ORM\PersistentCollection {#1841 …} -id: 288705 -bodyTs: "'access':31 'access-key':30 'anybodi':93 'assum':42 'backup':25 'backup-storag':24 'copi':16 'cp':76 'enter':80 'file':17 'first':49 'found':87 'initi':66 'key':32,79 'know':94 'look':11,56 'machin':64 'one':46 'perhap':58 'possibl':98 'ransomwar':52 'remot':63 's3':23 's3cmd':75 'script':60 'server':20,36,71 'sofar':83 'ssh':68 'stdin':82 'storag':26 'store':33 'thing':7,50 'think':4,39 'toolkit':53 'way':14 'without':27" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://infosec.pub/comment/5483590" +editedAt: null +createdAt: DateTimeImmutable @1704636907 {#1969 : 2024-01-07 15:15:07.0 +01:00 } } |
||||||||||||||||||||||||
|
|||||||||||||||||||||||||||
| 4 | DENIED | moderate | App\Entity\EntryComment {#1374 +user: Proxies\__CG__\App\Entity\User {#1882 …} +entry: App\Entity\Entry {#1856 …} +magazine: App\Entity\Magazine {#312 +icon: Proxies\__CG__\App\Entity\Image {#293 …} +name: "selfhosted@lemmy.world" +title: "selfhosted" +description: """ A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n \n Rules:\n \n - Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n - No spam posting.\n - Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n - Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n - No trolling.\n \n Resources:\n \n - [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n - [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n - [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n \n > Any issues on the community? Report it using the report flag.\n \n > Questions? DM the mods! """ +rules: null +subscriptionsCount: 1 +entryCount: 222 +entryCommentCount: 3916 +postCount: 0 +postCommentCount: 0 +isAdult: false +customCss: null +lastActive: DateTime @1729582735 {#320 : 2024-10-22 09:38:55.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#284 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#280 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#269 …} +entries: Doctrine\ORM\PersistentCollection {#227 …} +posts: Doctrine\ORM\PersistentCollection {#185 …} +subscriptions: Doctrine\ORM\PersistentCollection {#247 …} +bans: Doctrine\ORM\PersistentCollection {#164 …} +reports: Doctrine\ORM\PersistentCollection {#150 …} +badges: Doctrine\ORM\PersistentCollection {#128 …} +logs: Doctrine\ORM\PersistentCollection {#118 …} +awards: Doctrine\ORM\PersistentCollection {#107 …} +categories: Doctrine\ORM\PersistentCollection {#94 …} -id: 120 +apId: "selfhosted@lemmy.world" +apProfileId: "https://lemmy.world/c/selfhosted" +apPublicUrl: "https://lemmy.world/c/selfhosted" +apFollowersUrl: "https://lemmy.world/c/selfhosted/followers" +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "selfhosted" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1703473826 {#321 : 2023-12-25 04:10:26.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1703473826 {#315 : 2023-12-25 04:10:26.0 +01:00 } } +image: null +parent: Proxies\__CG__\App\Entity\EntryComment {#2356 …} +root: Proxies\__CG__\App\Entity\EntryComment {#2356 …} +body: """ I have been thinking the same thing.\n \n I have been looking into a way to copy files from our servers to our S3 backup-storage, without having the access-keys stored on the server. (as I think we can assume that will be one of the first thing the ransomware toolkits will be looking for).\n \n Perhaps a script on a remote machine that initiate a ssh to the server and does a “s3cmd cp” with the keys entered from stdin ? Sofar, I have not found how to do this.\n \n Does anybody know if this is possible? """ +lang: "en" +isAdult: false +favouriteCount: 1 +score: 0 +lastActive: DateTime @1704636907 {#1769 : 2024-01-07 15:15:07.0 +01:00 } +ip: null +tags: null +mentions: [ "@kristoff@infosec.pub" "@MNByChoice@midwest.social" ] +children: Doctrine\ORM\PersistentCollection {#2476 …} +nested: Doctrine\ORM\PersistentCollection {#2288 …} +votes: Doctrine\ORM\PersistentCollection {#2446 …} +reports: Doctrine\ORM\PersistentCollection {#2439 …} +favourites: Doctrine\ORM\PersistentCollection {#2488 …} +notifications: Doctrine\ORM\PersistentCollection {#1841 …} -id: 288705 -bodyTs: "'access':31 'access-key':30 'anybodi':93 'assum':42 'backup':25 'backup-storag':24 'copi':16 'cp':76 'enter':80 'file':17 'first':49 'found':87 'initi':66 'key':32,79 'know':94 'look':11,56 'machin':64 'one':46 'perhap':58 'possibl':98 'ransomwar':52 'remot':63 's3':23 's3cmd':75 'script':60 'server':20,36,71 'sofar':83 'ssh':68 'stdin':82 'storag':26 'store':33 'thing':7,50 'think':4,39 'toolkit':53 'way':14 'without':27" +ranking: 0 +commentCount: 0 +upVotes: 0 +downVotes: 0 +visibility: "visible " +apId: "https://infosec.pub/comment/5483590" +editedAt: null +createdAt: DateTimeImmutable @1704636907 {#1969 : 2024-01-07 15:15:07.0 +01:00 } } |
||||||||||||||||||||||||
|
|||||||||||||||||||||||||||
| 5 | DENIED | edit | App\Entity\Magazine {#312 +icon: Proxies\__CG__\App\Entity\Image {#293 …} +name: "selfhosted@lemmy.world" +title: "selfhosted" +description: """ A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n \n Rules:\n \n - Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n - No spam posting.\n - Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n - Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n - No trolling.\n \n Resources:\n \n - [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n - [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n - [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n \n > Any issues on the community? Report it using the report flag.\n \n > Questions? DM the mods! """ +rules: null +subscriptionsCount: 1 +entryCount: 222 +entryCommentCount: 3916 +postCount: 0 +postCommentCount: 0 +isAdult: false +customCss: null +lastActive: DateTime @1729582735 {#320 : 2024-10-22 09:38:55.0 +02:00 } +markedForDeletionAt: null +tags: null +moderators: Doctrine\ORM\PersistentCollection {#284 …} +ownershipRequests: Doctrine\ORM\PersistentCollection {#280 …} +moderatorRequests: Doctrine\ORM\PersistentCollection {#269 …} +entries: Doctrine\ORM\PersistentCollection {#227 …} +posts: Doctrine\ORM\PersistentCollection {#185 …} +subscriptions: Doctrine\ORM\PersistentCollection {#247 …} +bans: Doctrine\ORM\PersistentCollection {#164 …} +reports: Doctrine\ORM\PersistentCollection {#150 …} +badges: Doctrine\ORM\PersistentCollection {#128 …} +logs: Doctrine\ORM\PersistentCollection {#118 …} +awards: Doctrine\ORM\PersistentCollection {#107 …} +categories: Doctrine\ORM\PersistentCollection {#94 …} -id: 120 +apId: "selfhosted@lemmy.world" +apProfileId: "https://lemmy.world/c/selfhosted" +apPublicUrl: "https://lemmy.world/c/selfhosted" +apFollowersUrl: "https://lemmy.world/c/selfhosted/followers" +apInboxUrl: "https://lemmy.world/inbox" +apDomain: "lemmy.world" +apPreferredUsername: "selfhosted" +apDiscoverable: true +apManuallyApprovesFollowers: null +privateKey: null +publicKey: null +apFetchedAt: DateTime @1703473826 {#321 : 2023-12-25 04:10:26.0 +01:00 } +apDeletedAt: null +apTimeoutAt: null +visibility: "visible " +createdAt: DateTimeImmutable @1703473826 {#315 : 2023-12-25 04:10:26.0 +01:00 } } |
||||||||||||||||||||||||
|
|||||||||||||||||||||||||||