|
From: | Geeb |
Subject: | Re: [Help-gnunet] Security sandboxing of Gnunet |
Date: | Thu, 28 May 2015 15:29:44 +0100 |
Good point. So if you wanted to use the VPN or enable GNS via DNS
traffic interception using iptables, you'll need to have a sandbox that
is capable of giving the sandboxed process still rather broad
capabilities over the host OS so that it can do the required network
operations (like intercepting all DNS traffic exiting your system).
So again, sandboxing good, tricky to do right depending on the specific
GNUnet service you plan to sandbox (and the specific sandbox tech).
On 05/27/2015 05:44 PM, Sree Harsha Totakura wrote:
> Some services like the VPN, create a TUN device. I guess this could be
> problematic when the sandboxed.
_______________________________________________
Help-gnunet mailing list
address@hidden
https://lists.gnu.org/mailman/listinfo/help-gnunet
[Prev in Thread] | Current Thread | [Next in Thread] |