Has anyone written up how to secure an unauthenticated localhost service? I've got Host check against DNS rebinding, CORB/CORP/COOP against Spectre, anything else? Maybe I should work in a secret path segment after all.
-
-
Replying to @FiloSottile
By not running it. They're necessarily breaking privilege models, especially disregarding existence of local privilege domains. Not just multi-human-user but unpriv'd daemons etc. that may have vulns.
1 reply 1 retweet 1 like -
Replying to @RichFelker
How do you run a web UI for a local thing? (Think Syncthing.)
1 reply 0 retweets 1 like -
Replying to @FiloSottile
You asked about unauthenticated. Make it authenticated and the fact that it's on localhost is largely irrelevant.
2 replies 0 retweets 1 like -
Replying to @RichFelker @FiloSottile
(as long as it's bound to a port that nothing else on the system can bind to, and in addition it doesn't use cookies for anything security-relevant and instead stores authentication info in local storage)
1 reply 0 retweets 1 like
(because if an attacker can bind to the service's port while it's not running, the attacker can steal the creds; and if the credentials are cookies, the attacker can bind to any other port and receive the credentials on that port)
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.