Can we trust user servers?

jdmansour · June 28, 2022, 12:17pm

I have a question about the security model of JupyterHub. Are the user servers trusted? For example, I am working on a grading tool, and want to know if it is safe to run some of the grading code in a user server instance.

As far as I understand, first you have the hub process. This launches user servers via spawners, and these in turn run notebook kernels. It is clear that the user can do all kinds of things with the notebook kernels. But can they also manipulate the user server? I think they can because they basically have a shell and the user server runs under the same Linux user. So things like API secrets to report back grades should only live in the hub process, right?

manics · June 28, 2022, 12:42pm

That’s right, the singleuser server runs as the user, which means the user has access to the process. Even if there wasn’t a shell you can execute arbitrary processes and open files with Python or whatever kernel you’re using, so could read the memory space of the process.

If you need to provide access to an authenticated external resource without exposing credentials one option is to write a JupyterHub service that calls the external service on behalf of the user

jdmansour · July 4, 2022, 8:59am

Thanks, using a JupyterHub service works fine!

Topic		Replies	Views
What component serves Jupyterlab / notebook to an authentificated user and where is that code? JupyterHub jupyterhub	2	318	August 23, 2023
JupyterHub + SingleUserServer in API only mode JupyterHub	3	272	December 15, 2023
Can single-user instances authenticate access to shared notebooks? JupyterHub security	3	1625	October 11, 2022
How do I properly protect my data access passwords (not jupyter tokens/passwords) on 3rd party jupyter hub services? Security security	3	2837	June 1, 2021
Is authentication without system users possible? General	5	2180	August 13, 2019

Can we trust user servers?

Related Topics