Jump to content
Not connected, Your IP: 3.145.91.152
AirVPN
Keksjdjdke

Possible eddie feature

By Keksjdjdke, ... in Eddie - AirVPN Client

Recommended Posts

Keksjdjdke    35

Keksjdjdke
Posted ...

Ivpn's client has a feature that when you start up your Mac their network lock is it immediately enabled not requiring the user to perform any special action like sign in with there password. I think Eddie could use a feature like this where when you start up your Mac network Lock would immediately enable itself and Connect to VPN. I think their client uses a privileged helper that is constantly running in the background, and the privilege helper automatically starts up when your Mac starts up.

Here is the website of the client I was talking about. ivan.net

Share this post

Link to post

zhang888    1066

zhang888
Posted ...

This is a huge security risk, I can write a malicious app that will use this helper in order to elevate my privileges to the root user and compromise the system.

There is a very good reason why Apple recommends against it, and this is the reason why Android device is more secure when not rooted.

Once you allow a "helper" to run unprivileged binaries and elevate them to root, the road to a compromised system is very short.

Occasional moderator, sometimes BOFH. Opinions are my own, except when my wife disagrees.

Share this post

Link to post

Keksjdjdke    35

Keksjdjdke
Posted ...

This is a huge security risk, I can write a malicious app that will use this helper in order to elevate my privileges to the root user and compromise the system.

There is a very good reason why Apple recommends against it, and this is the reason why Android device is more secure when not rooted.

Once you allow a "helper" to run unprivileged binaries and elevate them to root, the road to a compromised system is very short.

If it is such a huge a Security risk, why does Ivan use it. And is there anyway to accomplish this without having a huge security risk?

Please delete this double post

Share this post

Link to post

zhang888    1066

zhang888
Posted ...

Other providers don't care about your security since this is probably not their priority.

There is no way of keeping an elevated process in memory, which will automatically elevate untrusted user application,

without exposing security issues. This is why the entire *nix ecosystem has the permissions model and the sudo subsystem.

 

Basically what they did is a permanent "bypass" of Cocoasudo, for a reason that is unknown to me.

 

To your other question, when you enable Network Lock once, it will stay active - this is accomplished by PF (OSX Firewall)

and has nothing to do with any additional application. I do not know how it is implemented with your other provider.

Occasional moderator, sometimes BOFH. Opinions are my own, except when my wife disagrees.

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Go To Topic Listing
×
×
  • Create New...