套件:tlswrapper(0~20241027-1 以及其他的)
tlswrapper 的相關連結
Debian 的資源:
下載原始碼套件 tlswrapper:
- [tlswrapper_0~20241027-1.dsc]
- [tlswrapper_0~20241027.orig.tar.gz]
- [tlswrapper_0~20241027-1.debian.tar.xz]
維護者:
外部的資源:
- 主頁 [github.com]
相似套件:
TLS encryption wrapper
The tlswrapper is an TLS encryption wrapper between remote client and local program prog.
Internet <--> tcpserver/inetd/systemd.socket/... <--> tlswrapper <--> prog
Separate process for every connection
The tlswrapper is executed from systemd.socket/inetd/tcpserver/... which runs separate instance of tlswrapper for each TLS connection. It ensures that a vulnerability in the code (e.g. bug in the TLS library) can't be used to compromise the memory of another connection.
Separate process for network connection and for secret-key operation
To protect against secret-information leaks to the network connection (such Heartbleed) tlswrapper runs two independent processes for every TLS connection. One process holds secret-keys and runs secret-keys operations and second talks to the network. Processes communicate with each other through unix pipes.
Privilege separation, filesystem isolation, limits
The tlswrapper processes run under dedicated non-zero uid to prohibit kill, ptrace, etc. Is chrooted into an empty, unwritable directory to prohibit filesystem access. Sets ulimits to prohibit new files, sockets, etc. Sets ulimits to prohibit forks.
TLS library
The tlswrapper is using BearSSL library which implements only secure versions of TLS protocol (TLS1.0 - TLS1.2). And implements safe and constant-time algorithms.
其他與 tlswrapper 有關的套件
|
|
|
|
-
- dep: lib25519-1 (>= 0~20230630)
- microlibrary X25519/Ed25519 - shared library
-
- dep: libbearssl0 (>= 0.6) [amd64]
- BearSSL - shared libraries
- dep: libbearssl0 (>= 0.6+dfsg.1) [除 amd64]
-
- dep: libc6 (>= 2.34) [除 alpha, ia64, sh4]
- GNU C 函式庫:共用函式庫
同時作為一個虛擬套件由這些套件填實: libc6-udeb
- dep: libc6 (>= 2.40) [sh4]
-
- dep: libc6.1 (>= 2.34) [alpha]
- GNU C 函式庫:共用函式庫
同時作為一個虛擬套件由這些套件填實: libc6.1-udeb
- dep: libc6.1 (>= 2.37) [ia64]
下載 tlswrapper
| 硬體架構 | 版本 | 套件大小 | 安裝後大小 | 檔案 |
|---|---|---|---|---|
| alpha (非官方移植版) | 0~20241027-1 | 49。6 kB | 204。0 kB | [檔案列表] |
| amd64 | 0~20241027-1 | 50。5 kB | 195。0 kB | [檔案列表] |
| arm64 | 0~20241027-1 | 47。2 kB | 202。0 kB | [檔案列表] |
| armel | 0~20241027-1 | 50。0 kB | 191。0 kB | [檔案列表] |
| armhf | 0~20241027-1 | 49。7 kB | 159。0 kB | [檔案列表] |
| hppa (非官方移植版) | 0~20241027-1 | 57。7 kB | 217。0 kB | [檔案列表] |
| i386 | 0~20241027-1 | 52。3 kB | 183。0 kB | [檔案列表] |
| ia64 (非官方移植版) | 0~20230101-2 | 59。4 kB | 274。0 kB | [檔案列表] |
| m68k (非官方移植版) | 0~20241027-1 | 48。4 kB | 183。0 kB | [檔案列表] |
| mips64el | 0~20241027-1 | 49。7 kB | 212。0 kB | [檔案列表] |
| ppc64 (非官方移植版) | 0~20241027-1 | 49。0 kB | 266。0 kB | [檔案列表] |
| ppc64el | 0~20241027-1 | 48。4 kB | 202。0 kB | [檔案列表] |
| riscv64 | 0~20241027-1 | 49。9 kB | 174。0 kB | [檔案列表] |
| s390x | 0~20241027-1 | 47。5 kB | 202。0 kB | [檔案列表] |
| sh4 (非官方移植版) | 0~20241027-1 | 62。1 kB | 200。0 kB | [檔案列表] |
| sparc64 (非官方移植版) | 0~20241027-1 | 43。2 kB | 1,102。0 kB | [檔案列表] |
| x32 (非官方移植版) | 0~20241027-1 | 51。1 kB | 188。0 kB | [檔案列表] |