1 sat \ 13 replies \ @OT 7 May \ on: Novel attack against virtually all VPN apps neuters their entire purpose privacy
“Except on Linux and Android”
write
preview
64 sats \ 2 replies \ @Lumor 7 May
Linux is still slightly vulnerable according to the article.
reply
10 sats \ 1 reply \ @siggy47 7 May
Yes. Do you know of a source to explain how to close the vulnerability?
reply
172 sats \ 0 replies \ @Lumor 7 May
Linked in the articke: https://www.leviathansecurity.com/blog/tunnelvision
Using network namespaces on Linux can completely fix this behavior. However, in our experience, it is less commonly implemented.
WireGuard’s documentation shows how it’s possible to use a namespace for all applications with traffic that should be using a VPN before sending it to another namespace that contains a physical interface. However, this appears to be Linux-specific functionality and it’s not clear if there is a solution for Windows, MacOS, or other operating systems with the same amount of robustness.
Guess we'll have to see how the attack applies to different VPN providers. Maybe 1-2 do use namespaces.
Initially I thought this was more of a threat on mobile networks (I guess not Android) or when using public WiFi. If one has control over one's home router doing the DHCP it shouldn't be an issue. But what are our home router talking to? A DHCP server of our internet provider. I'm not sure whether these 121 configurations can pass multiple hops, have not investigated further.
reply
21 sats \ 9 replies \ @siggy47 7 May
I have to ask: who the hell is not using Linux and android?
reply
64 sats \ 8 replies \ @kepford 7 May
Most people. I would say most stackers even.
reply
0 sats \ 7 replies \ @siggy47 7 May
Yeah. I guess you're right. I forget that everyone doesn't despise Apple as much as I do. I assume a solution will be available soon.
reply
54 sats \ 2 replies \ @kepford 7 May
You are rare Siggy. Don't forget that.
reply
55 sats \ 1 reply \ @siggy47 7 May
Yeah, my family says that too, but in an entirely different context.
reply
54 sats \ 0 replies \ @kepford 7 May
I think I understand. I've never fit in. I know the feeling. At least my friends and family like me.
reply
0 sats \ 3 replies \ @positronic_bot 7 May
There's also this company called Microsoft you may have heard about. I hear their software is kinda popular.
reply
3 sats \ 2 replies \ @siggy47 7 May
Was that one founded by the guy who's going to save the world?
reply
54 sats \ 1 reply \ @positronic_bot 8 May
I think you're thinking of Microstrategy. Similar name but different software.
reply
20 sats \ 0 replies \ @siggy47 8 May
Similar egos, though? No?
reply