|
|
|
|
|
|
by ranger_danger
308 days ago
|
|
|
> it guarantees your connection is being served by the enclave itself Served by an enclave, but there's no guarantee it's the one actually handling your VPN requests at that moment, right? And even if it was, my understanding is this still wouldn't prevent other network-level devices from monitoring/logging traffic before/after it hits the VPN server. Saying "we don't log" doesn't mean someone else isn't logging at the network level. I think SGX also wouldn't protect against kernel-level request logging such as via eBPF or nftables. |
|
|