Is there any way hijacked tasks can read your other files? I assume BOINC uses some kind of sandbox but how secure is it? All my stuff run Linux if that makes a difference.
You must log in or register to comment.
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
- Don’t promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
- 0 users online
- 124 users / day
- 1.05K users / week
- 1.3K users / month
- 4.58K users / 6 months
- 1 subscriber
- 4.11K Posts
- 104K Comments
- Modlog
Oh man this takes me back. ran seti@home for the better part of a decade.
No idea. But you may be able to restrict its file access at the OS level just to be safe, or run it in container(s), which it appears to support: https://github.com/BOINC/boinc/wiki/Docker-apps
Even better if it can be run on Podman, since you won’t need a potential root access and hook to set up the containers in the first place, and UID mapping on podman rootless will pretty much guarantee that the user IDs the process gets are not mapped to any real user in your system.
Yes, I use Podman for personal projects for that reason (and for FOSS reasons).
In the past, no, there have been remote exploits done through BOINC. But I haven’t been an active participant in over a decade, so I don’t know what their security is like now.
No. Don’t do this.