Message 356910 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	njs
Recipients	asvetlov, gvanrossum, njs, vaizki, yselivanov
Date	2019-11-18.21:15:09
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1574111710.17.0.786502122434.issue37228@roundup.psfhosted.org>
In-reply-to

Content
Ouch, that's nasty. It also has security implications. For example, suppose you have a multi-user computer, where one user is has a video call going, which transfers packets over UDP. Another user could check what port they're using, bind to the same port, and steal half the packets, letting them effectively listen in on the first user's phone call. Well, hopefully most conferencing tools use end-to-end encryption. But the point is that we don't normally let unprivileged users steal network traffic intended for other users.

Ouch, that's nasty. It also has security implications. For example, suppose you have a multi-user computer, where one user is has a video call going, which transfers packets over UDP. Another user could check what port they're using, bind to the same port, and steal half the packets, letting them effectively listen in on the first user's phone call.

Well, hopefully most conferencing tools use end-to-end encryption. But the point is that we don't normally let unprivileged users steal network traffic intended for other users.

History
Date	User	Action	Args
2019-11-18 21:15:10	njs	set	recipients: + njs, gvanrossum, asvetlov, yselivanov, vaizki
2019-11-18 21:15:10	njs	set	messageid: <1574111710.17.0.786502122434.issue37228@roundup.psfhosted.org>
2019-11-18 21:15:10	njs	link	issue37228 messages
2019-11-18 21:15:09	njs	create