xabadak

@xabadak@lemmings.world

• ⁨Comment⁩ on ⁨Novel attack against virtually all VPN apps neuters their entire purpose⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:

  No worries, and thanks for providing a response nonetheless. I’ll look into your suggestion when I have the time. The official Wireguard website also had some guide on network namespaces here but afaik it didn’t explain how to set it up persistently

• ⁨Comment⁩ on ⁨Novel attack against virtually all VPN apps neuters their entire purpose⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:

  It all depends on how much you trust the devices on your LAN. So your ISP can’t do anything unless they own and control your router, since that is on your LAN. So one concern might be if you connect your PC to coffee shop wifi, since all other devices in the shop are on the same LAN, not to mention the coffee shop owns the wifi router and can also perform the attack. Another concern might be if a family member in your house has a device that got hacked, then all devices in your house are vulnerable.

• ⁨Comment⁩ on ⁨Novel attack against virtually all VPN apps neuters their entire purpose⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:

  Do you know how to make it so all the host’s traffic is sent through the VPN namespace? I couldn’t figure out how to do this so I ended up just writing my own firewall. Network namespaces seems like a better solution.

• ⁨Comment⁩ on ⁨Novel attack against virtually all VPN apps neuters their entire purpose⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:

  I saw that but unfortunately it doesn’t detail how to set it up persistently on every boot. And I also haven’t seen anybody using this method, probably because of the lack of tooling around it. For example afaik the official Mullvad client on linux just uses a firewall.