Hamachi is a zero-configuration virtual private network (VPN) shareware application that is capable of establishing direct links between computers that are behind NAT firewalls without requiring reconfiguration (when the user's PC can be accessed directly without relays from the Internet/WAN side ); in other words, it establishes a connection over the Internet that emulates the connection that would exist if the computers were connected over a local area network. It is currently available as a production version for Microsoft Windows and Mac OS X, and as a beta version for Linux.
Security Hamachi
The following considerations apply to Hamachi's use as a VPN application:
Additional risk of disclosure of sensitive data which is stored or may be logged by the mediation server — minimal where data is not forwarded.
The security risks due to vulnerable services on remote machines otherwise not accessible behind a NAT, common to all VPNs.
Hamachi is stated to use strong, industry-standard algorithms to secure and authenticate the data and its security architecture is open.[4]
The existing client-server protocol documentation contains a number of errors,[5][6] some of which have been confirmed by the vendor, pending correction,[7] with others not yet confirmed.
For the product to work, a "mediation server", operated by the vendor, is required.
This server stores the nickname, maintenance password, statically-allocated 5.0.0.0/8 IP address and the associated authentication token of the user. As such, it can potentially log actual IP addresses of the VPN users as well as various details of the session.
As all peers sharing a tunnel have full "LAN-like" access to each other's computers, security problems may arise if firewalls are not used, as with any insecure situation. The security features of the NAT router/firewall are bypassed; this is an issue with all VPNs.
Link Download :
0 comments
Post a Comment