Skip to content
This repository has been archived by the owner on Oct 22, 2021. It is now read-only.

Security of the terminal #1037

Answered by GitSquared
danbulant asked this question in Questions
Feb 13, 2021 · 1 comments · 1 reply
Discussion options

You must be logged in to vote

In theory, yes, a malicious website could connect to edex's internal websocket connection via client-side javascript, and get terminal access.
In practice however, the internal websocket server only accepts one connection so the website has very limited time to try to connect before edex's own frontend does.

Replies: 1 comment 1 reply

Comment options

You must be logged in to vote
1 reply
@danbulant
Comment options

Answer selected by danbulant
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
2 participants