On Wed, Sep 15, 2010 at 13:19, Joachim Schipper <joac...@joachimschipper.nl> wrote: > On Wed, Sep 15, 2010 at 12:34:48PM -0300, Hugo Osvaldo Barrera wrote: >> I'm planning on having a few servers (including SVN) listening on 127.0.0.1 >> on machine A, and then tunneling into that machine from machine B to use >> those services. >> >> However, how safe is "lo" this sort of tunnel? B Is there a way for other >> (non root) users of machine A to sniff what goes about though "lo"? >> >> To make my question clearer: I know that the tunnel itself cannot be read >> from outside, but my concern is the last piece of link; can the loopback >> network interface be accessed by other users? B Is it safe, in a shared >> environment, to transmit sensitive data though it? > > Transmitting data over lo on a machine with other users does not expose > you to any (new) attacks.
I assume that by "new", you mean that I won't be opening any door that where previously closed. Thanks, this is good to know. Looks like I'll be sleeping tonight. > > Do note, however, that other users can likely access the service you run > as well. Yes, I realize this, but some servers use very lousy plain-text authentication. There's no issue if it's though an ssh tunnel, but you can understand my concern for not wanting to expose this to other users on the server machine. > > B B B B B B B B Joachim > > -- > TFMotD: ep (4) - 3Com EtherLink III and Fast EtherLink III 10/100 > Ethernet device > http://www.joachimschipper.nl/ > > -- Hugo Osvaldo Barrera
