posts:2021:2021.04.03_-_privacy_issue_in_rust

Privacy Issue in Rust

Saturday April 3, 2021

An article on bleepingcomputer.com brings attention to a privacy concern raised about Rust several years ago:

In early 2017, a Rust developer filed an issue on the Rust lang’s GitHub asking, “How can I stop rustc [from] including system specific information such as absolute file paths of the source it’s compiled from in the binaries it generates?”

The developer shared some examples of paths retained in their production builds…

It seems that Rust was (and is) embedding full local path information for files on the developer’s machine. The issue occurs in debug and production builds. The behavior isn’t documented, and there’s no way to stop the leakage.

As Rust has grown in popularity, the issue has gained more visibility, and it looks like the Rust development team is finally taking it seriously. Details in the article here.

  • posts/2021/2021.04.03_-_privacy_issue_in_rust.txt
  • Last modified: 2025/03/31 14:17
  • by jimc