:: [DNG] DBus mitigation (Was: The sta…
Top Page
Delete this message
Reply to this message
Author: aitor
Date:  
To: dng
Subject: [DNG] DBus mitigation (Was: The status of simple-netaid-gtk)
Hi,

After pushing the newest code of simple-netaid-gtk to gitea.devuan.dev,
I'm considering the following possible scenarios:

1) To keep the original idea of a suid binary and the use of a security
model through parameters with the addition of an unix
socket in order to connect the backend and the frontend each other in a
save way, whichis the aim of the client and the server
classes defined in the project:

https://gitea.devuan.dev/aitor_czr/simple-netaid-gtk/src/branch/master/gtk/cli.cpp
<https://gitea.devuan.dev/aitor_czr/simple-netaid-gtk/src/branch/master/gtk/cli.cpp>

https://gitea.devuan.dev/aitor_czr/simple-netaid-gtk/src/branch/master/gtk/svr.cpp
<https://gitea.devuan.dev/aitor_czr/simple-netaid-gtk/src/branch/master/gtk/svr.cpp>

or...

2) A more elaborated connection thanks to the use of libubus to connect
the interface to the daemon. To some who do not
know it, ubus consists of a tiny inter-process communication from the
OpenWrt projectdeveloped in order to simplify the bloated UBus:

https://gitea.devuan.dev/aitor_czr/libubus/src/branch/gbp-release-0.1
<https://gitea.devuan.dev/aitor_czr/libubus/src/branch/gbp-release-0.1>

https://gitea.devuan.dev/aitor_czr/libubox/src/branch/gbp-release-0.1
<https://gitea.devuan.dev/aitor_czr/libubox/src/branch/gbp-release-0.1>

The man behind this debianization is Alexander Couzens. You can find
further information about ubus here:

https://openwrt.org/docs/techref/ubus
<https://openwrt.org/docs/techref/ubus>

and here:

https://www.hyperbola.info/todo/dbus-mitigation/
<https://www.hyperbola.info/todo/dbus-mitigation/>

In closing, one clarification: the GUI of simple-netaid will be
compatible with both Gtk2 and Gtk3, as you can see in the pre-directives
used in main.cpp, icon_factory.cpp, etc.

Cheers,

Aitor.