On Wed, Sep 15, 2010 at 12:34:48PM -0300, Hugo Osvaldo Barrera wrote:
> I'm planning on having a few servers (including SVN) listening on 127.0.0.1
> on machine A, and then tunneling into that machine from machine B to use
> those services.
>
> However, how safe is "lo" this sort of tunnel? Is there a way for other
> (non root) users of machine A to sniff what goes about though "lo"?
>
> To make my question clearer: I know that the tunnel itself cannot be read
> from outside, but my concern is the last piece of link; can the loopback
> network interface be accessed by other users? Is it safe, in a shared
> environment, to transmit sensitive data though it?
Transmitting data over lo on a machine with other users does not expose
you to any (new) attacks.
Do note, however, that other users can likely access the service you run
as well.
Joachim
--
TFMotD: ep (4) - 3Com EtherLink III and Fast EtherLink III 10/100
Ethernet device
http://www.joachimschipper.nl/
