Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement verification of server #946

Open
foxtran opened this issue Dec 22, 2024 · 3 comments
Open

Implement verification of server #946

foxtran opened this issue Dec 22, 2024 · 3 comments

Comments

@foxtran
Copy link
Contributor

foxtran commented Dec 22, 2024

Usage of Tracy on public machines can be dangerous since another Tracy's user can catch client session and theoretically get a control on execution of client code. So, it would be nice to have an ability to verify that is a proper server.

One of the solution is to provide TRACY_PASSWORD env var both for client and server and compare them at client side.
@wolfpld
Copy link
Owner

wolfpld commented Dec 22, 2024

You can achieve this by restricting bind address to localhost, and then forwarding ports via ssh.

@foxtran
Copy link
Contributor Author

foxtran commented Dec 22, 2024

What if I'm not a single user of localhost? For example, it can be a login node of HPC cluster

@wolfpld
Copy link
Owner

wolfpld commented Dec 22, 2024

I'm not saying the password idea is not worth investigating, just providing solutions you can use right at this moment.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@wolfpld @foxtran