help-gnunet
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Help-gnunet] Security sandboxing of Gnunet

From: Geeb
Subject: Re: [Help-gnunet] Security sandboxing of Gnunet
Date: Thu, 28 May 2015 15:29:44 +0100
OK, thanks all, for your collective musings!

Geeb

On 27 May 2015 at 23:24, Christian Grothoff <address@hidden> wrote:
Good point. So if you wanted to use the VPN or enable GNS via DNS
traffic interception using iptables, you'll need to have a sandbox that
is capable of giving the sandboxed process still rather broad
capabilities over the host OS so that it can do the required network
operations (like intercepting all DNS traffic exiting your system).

So again, sandboxing good, tricky to do right depending on the specific
GNUnet service you plan to sandbox (and the specific sandbox tech).

On 05/27/2015 05:44 PM, Sree Harsha Totakura wrote:
> Some services like the VPN, create a TUN device.  I guess this could be
> problematic when the sandboxed.


_______________________________________________
Help-gnunet mailing list
address@hidden
https://lists.gnu.org/mailman/listinfo/help-gnunet


reply via email to
[Prev in Thread] Current Thread [Next in Thread]