Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://hachyderm.io/users/dalias/statuses/114591007134348415">Rich Felker (dalias@hachyderm.io)'s status on Thursday, 29-May-2025 21:00:08 JST</a><a href="https://hachyderm.io/@dalias" title="dalias@hachyderm.io"><img src="https://gnusocial.jp/avatar/40873-48-20221207231635.webp" width="48" height="48" alt="Rich Felker" style="position: absolute; left: 0; top: 0;">Rich Felker</a><div><a href="https://social.glitched.systems/notes/a8cvlcuuslph0199" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://social.glitched.systems/@froge">@froge</a> "even if you trust both ends of the connection you should still install security relevant patches to mitigate issues on the network or in the protocol itself,"</p><p>The app doesn't speak the protocol! The Linux kernel does. The app is purely a network configurator tool (unless you're running a very old kernel where a userspace implementation is used instead). The only input it processes is what you type in the UI.</p><p>But also, there is no room for vulns in the wg protocol. I've implemented it from scratch before. It has no gratuitous syntax or options. Fixed form cryptographic framing.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/5119451#notice-10041626">In conversation</a><time datetime="2025-05-29T21:00:08+09:00" title="Thursday, 29-May-2025 21:00:08 JST">about 4 days ago</time> <span>from <span><a href="https://gnusocial.jp/notice/10041626" rel="external" title="Sent from gnusocial.jp via ActivityPub">gnusocial.jp</a></span></span><a href="https://gnusocial.jp/notice/10041626">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Rich Felker (dalias@hachyderm.io)'s status on Thursday, 29-May-2025 21:00:08 JSTRich Felker
in reply to
- CyberFrog
@froge "even if you trust both ends of the connection you should still install security relevant patches to mitigate issues on the network or in the protocol itself,"
The app doesn't speak the protocol! The Linux kernel does. The app is purely a network configurator tool (unless you're running a very old kernel where a userspace implementation is used instead). The only input it processes is what you type in the UI.
But also, there is no room for vulns in the wg protocol. I've implemented it from scratch before. It has no gratuitous syntax or options. Fixed form cryptographic framing.
In conversationabout 4 days ago from gnusocial.jppermalink

Public

Embed Notice

HTML Code

Corresponding Notice