On Wed, Sep 15, 2010 at 12:34:48PM -0300, Hugo Osvaldo Barrera wrote: > I'm planning on having a few servers (including SVN) listening on 127.0.0.1 > on machine A, and then tunneling into that machine from machine B to use > those services. > > However, how safe is "lo" this sort of tunnel? Is there a way for other > (non root) users of machine A to sniff what goes about though "lo"? > > To make my question clearer: I know that the tunnel itself cannot be read > from outside, but my concern is the last piece of link; can the loopback > network interface be accessed by other users? Is it safe, in a shared > environment, to transmit sensitive data though it?
Transmitting data over lo on a machine with other users does not expose you to any (new) attacks. Do note, however, that other users can likely access the service you run as well. Joachim -- TFMotD: ep (4) - 3Com EtherLink III and Fast EtherLink III 10/100 Ethernet device http://www.joachimschipper.nl/