[Bug 1184395] New: [Package request] mullvad-vpnapp
https://bugzilla.suse.com/show_bug.cgi?id=1184395 Bug ID: 1184395 Summary: [Package request] mullvad-vpnapp Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: x86-64 OS: openSUSE Tumbleweed Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: martin.rohde@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Business case: Many desktop users are explicitly asking for an easy way to use VPNs beyond NetworkManager. I regularly point advanced users to setting up their own VPN infrastructure on a VPS, however, not everyone has the time or skills to do so. Among the many commercial offerings, Mullvad is perhaps the only one that I would recommend. This is also a typical case where a containerized desktop application would perhaps not work (and to date there is no flatpak available). Having it available in the TW repo would significantly increase user adoption of openSUSE TW. GitHub: https://github.com/mullvad/mullvadvpn-app Source Tarball: https://github.com/mullvad/mullvadvpn-app/archive/refs/tags/2021.2.tar.gz License: GPL-3.0 As these are security-sensitive packages and to review their security policy, tagged as security: https://github.com/mullvad/mullvadvpn-app/blob/master/docs/security.md -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1184395 https://bugzilla.suse.com/show_bug.cgi?id=1184395#c1 Matthias Gerstner <matthias.gerstner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |matthias.gerstner@suse.com Summary|[Package request] |AUDIT-0: mullvadvpn-app: |mullvad-vpnapp |request for inclusion in | |Factory --- Comment #1 from Matthias Gerstner <matthias.gerstner@suse.com> --- So do you intend to package this for Factory and become maintainer of the package? A quick look into the upstream repo shows: - daemon component which consists of ~8.500 lines of Rust code - cli component which consists of ~3.500 lines of Rust code - gui commponent which consists of ~10.000 lines of Java Script This does not include the various third party code that undoubtedly will be used in this context. So we can review their security documentation, the cryptography, the network level security and the local security. Doing all of this would be quite some effort. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1184395 https://bugzilla.suse.com/show_bug.cgi?id=1184395#c2 Wolfgang Frisch <wolfgang.frisch@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |wolfgang.frisch@suse.com Assignee|security-team@suse.de |wolfgang.frisch@suse.com --- Comment #2 from Wolfgang Frisch <wolfgang.frisch@suse.com> --- I will give this a try. -- You are receiving this mail because: You are on the CC list for the bug.
https://bugzilla.suse.com/show_bug.cgi?id=1184395 Wolfgang Frisch <wolfgang.frisch@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |IN_PROGRESS -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@suse.com