Comments (2)
jiaz83
commented on May 28, 2024
2
JDownloader doesn't require root/admin priviliges to run. So yes, it should run as unpriviliged user when feasible.
The protocol/api of MyJDownloader are open source, as well as JDownloader itself. So anyone can analyse it, write own tools/clients and verify security/authentication/encryption. MyJDownloader uses end-to-end encryption. Your password has never left your computer. It uses AES for encryption, Hmac256 for authentication, session based tokens/keys and requestID for detecting replay attacks. Experimental RSA encryption also exists. It also supports direct-connections, the client/eg webinterface directly talks to your JDownloader instance and only session/notification stuff requires the server.
In case you want to know more about this, feel free to contact us either via [email protected] or in live chat (irc, freenode, #jdteam).
Best Regards,
jiaz, JDownloader core developer
from docker-jdownloader.
jaymoulin
commented on May 28, 2024
It's not just a "I don't believe JDownloader so don't run as root" but no process should run as root.
The fact that jdownloader is in a Docker container is a first attack surface reduce because you can already check I/O and no process can be accessed outside from this container.
BUT
You still have a point. This container should not run as root. A system of UID/GID is already implemented in Docker but I'm pretty sure I have something more to implement in the image to use it properly if I can remember.
I'm keeping this issue open until I have time to handle it or you can PR it.
from docker-jdownloader.
Related Issues (20)
- Issues with image on raspberry pi HOT 1
- Special characters issue HOT 1
- decoding and naming files HOT 1
- Link to /opt/JDownloader/Downloads on Synology NAS?
- Invalid Download Directory HOT 1
- Invalid Download Directory HOT 1
- Description for config folder is wrong HOT 1
- Not working with Libreelec on RPI4 HOT 3
- Extensions cannot be installed because of permissions HOT 2
- Not working on rpi4, raspberrypi os 64bit HOT 1
- Publish images to GitHub Container Registry as mirror
- Extraction not working: 7zip libraries not in classpath HOT 10
- [FEATURE]Add the possibility to use docker secret method
- no JAR command HOT 2
- Container do not run in Docker on LibreELEC 10.0.3 HOT 1
- Add cracker0dks/CaptchaSolver HOT 1
- Got 3 IP address but which one is used for downloading? HOT 2
- Error after password change HOT 6
- java.lang.RuntimeException: No Console Available! HOT 8
- Download directory on CIFS/SMB can only be mounted ro HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from docker-jdownloader.