31
you are viewing a single comment's thread
view the rest of the comments
[-] kid@sh.itjust.works 2 points 6 months ago

Interesting. I didn't know that syncthing does hole punching.

From a defense perspective, how would this work with an enterprise firewall, with UDP/TCP only allowed to specific destinations or specific sources. Example: only the internal DNS relay server can access 53/UDP and only the internal proxy server can access 80/443. What I mean is in a network with a very closed firewall, how would Syncthing be able to connect with peers?

[-] jet@hackertalks.com 4 points 6 months ago* (last edited 6 months ago)

If the firewall was properly locking down servers to functions then it shouldn't work. But if it has general Web access sync thing is very resilient

This is the reason people use sync thing and recommend it, it's really hard to kill

[-] seang96@spgrn.com 3 points 6 months ago* (last edited 6 months ago)

Bestbet would probably be block on an application level. I swapped to bitwarden since syncthing wasn't liked by the AV on my work pc and I was using it to sync my password db.

this post was submitted on 07 Jun 2024
31 points (84.4% liked)

Cybersecurity

5846 readers
86 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago
MODERATORS