QueenSasha 1 Posted ... 16 hours ago, inradius said: If Eddie is still written in mono then it remains a security risk If Eddie continues to require root privileges in Linux then it remains a security risk Old Eddie versions had GUI asking for root privileges. & always ran external programs with root privileges when not necessary. Need HTTP comm bro? Eddie raises a whole root shell to curl causing resource crazy waste and security hazard. I mean you're so lazy that you need to run external programs for trivial tasks? At least do it it properly, why the fuck do you run a root shell?! Are you insane or what? Any comment, "developers"?! Guess we can't see Eddie 2.18 source code yet BTW you can see that finally finally finally GUI runs as normal user, not root - better late than never. As if AirVPN sent all the lazy jerks to Eddie desktop and all developers to Android and OpenVPN library fork. Go look into 1) Eddie Android source code and OpenVPN fork diffs code vs. 2) Eddie Linux / Mac source code. In 1, elegant - maybe brilliant for abilities of mine!! - code vs. in 2 a stinking muddy mess of nonsense comments, all'round inefficiencies and security holes. Eddie desktop was always a no-go to me but I am pleased by latest or not-so-latest development course in Android and OVPN 3. It began enriching AirVPN badly long due needed software dev, I mean a drastic long due quality enhancement IMHO. More must come though, moar moar more! Who knows, will Eddie 2.18 for Linux / Mac be better? After years of chaotic devel? Can you expect no cocky impudent heinous root shell summoning? What about external programs launches with unlimited root privileges? Mess in Eddie 2.16 is huge so I'm all in with new development branch, I am not confident in any future Mono based Eddie, but who cares? You don't need it, not in Linux at least. Quote If Eddie continues to require root privileges in Linux then it remains a security riskI Don't ya be a jerk too though. You can raise and drop but at some point you need routes, firewall and so on and so forth. BUT do it properly... by f* Jove, don't raise shells as if they were peanuts!!! Quote here are much better coded and safer Linux clients offered by other providers Booooooom, you jerk too!? Most force you into a jungle of closed source junk software and Android apps aimed to steal your data with bunch of trackers. Tell me tell me genius, who boosted ChaCha20 into OpenVPN 3? -- qs Quote Share this post Link to post
BlueBanana 22 Posted ... I am not an expert on this stuff, but as far as i know, the OpenVPN process needs to be root to be executed. Other clients simply run a daemon in the background that gives them root access when it's needed. Eddie development has been slow recently, that's true, but for the the years i have been using it, it has never let me down... So no need to be hysteric. 😉 Regards BB Quote Share this post Link to post
Staff 8232 Posted ... Hello! While we will let developers provide more details should they wish so, we would like to firmly clarify that: Eddie 2.18.x GUI or command line frontend does not run as root; the backend process does Eddie 2.18.x is in beta testing phase, so potential bugs and issues should be in general expected at any time Eddie 2.18.x does not run "curl" with root privileges anymore @QueenSasha Eddie 2.18.x GUI is written in C# (so it needs the Mono framework) but the backend process is written in C++, so it does NOT need Mono framework. Running only a GUI in Mono with normal user privileges shrinks down Mono related risks very considerably @inradius If you find critical Mono vulnerabilities even related to apps running with user privileges things would be different, of course root privileges are necessary to modify firewall rules (for "Network Lock"), change routing table, properly handle DNS push. Root privileges are also transmitted to OpenVPN, which needs them to modify routing table, default gateway and operate on tun network interface. That's expected, correct and ordinary behavior by any OpenVPN based software developer @inradius unless you have a special API service, as it happens in Android with VPNService API, where root privileges are not needed (and you can't set a real "Network Lock" as a consequence) if any security vulnerability is ascertained and proven we and developers will of course address it expeditiously @QueenSasha Kind regards 2 spinmaster and Pi77Bull reacted to this Quote Share this post Link to post
spinmaster 11 Posted ... Just want to throw in that I have been using Eddie 2.18.5 on macOS Catalina 10.15.1 for three weeks or so now and I haven't noticed any issues. Everything seems to work as expected (server connections, switching servers, etc.). On a sidenote: is there anything more to updating the client on macOS than extracting the tar.gz and replacing the binary file for Eddie in the /Applications folder? Quote Share this post Link to post
b52ff 0 Posted ... - Running Ubuntu 20.04 daily (don't kill me I like the edge!) Eddie UI 2.18.5beta - have been around a while so experienced these types of bugs with Eddie before and grin and bear it - When selecting 'minimize to tray' the dreaded black screen of Eddie death is back again although connection still works - Disabled 'minimize to tray' Eddie sits in dock with no problems and tray icon functions ok too - Eddie related Mono memory use has been as high as 1.4GB!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! - NO DNS LEAK Quote Share this post Link to post
NotTheOne 6 Posted ... MacOS 10.12.6 Eddie 2.18.5 Running for a couple of months, very stable, sometimes certain individual servers have trouble connecting but I just choose a different server and can connect to it. Only issue I can think of is the "Latency" speeds and stars "Score" don't show up on the "Servers" tab. Quote Share this post Link to post
uggugg123 0 Posted ... (edited) On 11/28/2019 at 1:14 PM, NotTheOne said: MacOS 10.12.6 Eddie 2.18.5 Running for a couple of months, very stable, sometimes certain individual servers have trouble connecting but I just choose a different server and can connect to it. Only issue I can think of is the "Latency" speeds and stars "Score" don't show up on the "Servers" tab. Client wont do a speed/latency refresh if you're allready connected to an airvpn server. You can force it to do so by going to Stats and double-clicking the appropriate row from the SS below An unrelated query, the scoring rules/metrics for Speed annd how many stars it gives a server I've found to be very inaccurate. According to latest refresh Angetenar is the highest scoring Speed server but I get almost 1/4 the throughput than I do on others. But the latency test to Stars given to a server seems to be working as expected. Running Windows 10 1903 Eddie 2.18.5beta Edited ... by uggugg123 Quote Share this post Link to post