SoylentNews
SoylentNews is people
https://soylentnews.org/

Title    Local User Tails Linux IP Leak
Date    Sunday June 17 2018, @09:54AM
Author    janrinok
Topic   
from the not-quite-secure dept.
https://soylentnews.org/article.pl?sid=18/06/16/142233

An Anonymous Coward writes:

A compromised local user can leak your IP by using a script to start unsafe-browser hidden in the background and use X11 trickery to leak your real IP without privilege escalation. Most applications exploited on Tails would be capable of this.

deleting /etc/sudoers.d/zzz_unsafe-browser after booting will fix this issue until Tails fixes it themselves

Bug #15635

Feature #7072: Research potential for deanonymization by a compromised "amnesia" user

The Unsafe Browser allows to retrieve the public IP address by a compromised amnesia user with no user interaction

Original Submission

Links
  1. "leak your IP" - https://labs.riseup.net/code/issues/15635
  2. "Tails" - https://tails.boum.org/
  3. "Original Submission" - https://soylentnews.org/submit.pl?op=viewsub&subid=27346
© Copyright 2024 - SoylentNews, All Rights Reserved

printed from SoylentNews, Local User Tails Linux IP Leak on 2024-04-18 04:35:22