How to Install and Uninstall tlswrapper Package on Kali Linux
Last updated: November 07,2024
1. Install "tlswrapper" package
Please follow the steps below to install tlswrapper on Kali Linux
$
sudo apt update
Copied
$
sudo apt install
tlswrapper
Copied
2. Uninstall "tlswrapper" package
In this section, we are going to explain the necessary steps to uninstall tlswrapper on Kali Linux:
$
sudo apt remove
tlswrapper
Copied
$
sudo apt autoclean && sudo apt autoremove
Copied
3. Information about the tlswrapper package on Kali Linux
Package: tlswrapper
Version: 0~20230101-1
Installed-Size: 195
Maintainer: Jan Mojžíš
Architecture: amd64
Depends: libbearssl0 (>= 0.6), libc6 (>= 2.34)
Size: 51332
SHA256: f8b8525b2d4ec3a74ac6bdb0e6b73b1e32d8dbdac460e8170eb9fcc55ea7867c
SHA1: 869a7892818785fe75fda99a44e3bc238486dfab
MD5sum: 75cd0d95463236a7def560cea75ca8c2
Description: TLS encryption wrapper
The tlswrapper is an TLS encryption wrapper between remote client and
local program prog.
.
Internet <--> tcpserver/inetd/systemd.socket/... <--> tlswrapper <--> prog
.
Separate process for every connection
.
The tlswrapper is executed from systemd.socket/inetd/tcpserver/... which
runs separate instance of tlswrapper for each TLS connection.
It ensures that a vulnerability in the code (e.g. bug in the TLS library)
can't be used to compromise the memory of another connection.
.
Separate process for network connection and for secret-key operation
.
To protect against secret-information leaks to the network connection
(such Heartbleed) tlswrapper runs two independent processes for every
TLS connection. One process holds secret-keys and runs secret-keys operations
and second talks to the network. Processes communicate with each other through
unix pipes.
.
Privilege separation, filesystem isolation, limits
.
The tlswrapper processes run under dedicated non-zero uid to prohibit kill,
ptrace, etc. Is chrooted into an empty, unwritable directory to prohibit
filesystem access. Sets ulimits to prohibit new files, sockets, etc.
Sets ulimits to prohibit forks.
.
TLS library
.
The tlswrapper is using BearSSL library which implements only secure
versions of TLS protocol (TLS1.0 - TLS1.2). And implements safe and
constant-time algorithms.
Description-md5:
Homepage: https://github.com/janmojzis/tlswrapper
Section: net
Priority: optional
Filename: pool/main/t/tlswrapper/tlswrapper_0~20230101-1_amd64.deb
Version: 0~20230101-1
Installed-Size: 195
Maintainer: Jan Mojžíš
Architecture: amd64
Depends: libbearssl0 (>= 0.6), libc6 (>= 2.34)
Size: 51332
SHA256: f8b8525b2d4ec3a74ac6bdb0e6b73b1e32d8dbdac460e8170eb9fcc55ea7867c
SHA1: 869a7892818785fe75fda99a44e3bc238486dfab
MD5sum: 75cd0d95463236a7def560cea75ca8c2
Description: TLS encryption wrapper
The tlswrapper is an TLS encryption wrapper between remote client and
local program prog.
.
Internet <--> tcpserver/inetd/systemd.socket/... <--> tlswrapper <--> prog
.
Separate process for every connection
.
The tlswrapper is executed from systemd.socket/inetd/tcpserver/... which
runs separate instance of tlswrapper for each TLS connection.
It ensures that a vulnerability in the code (e.g. bug in the TLS library)
can't be used to compromise the memory of another connection.
.
Separate process for network connection and for secret-key operation
.
To protect against secret-information leaks to the network connection
(such Heartbleed) tlswrapper runs two independent processes for every
TLS connection. One process holds secret-keys and runs secret-keys operations
and second talks to the network. Processes communicate with each other through
unix pipes.
.
Privilege separation, filesystem isolation, limits
.
The tlswrapper processes run under dedicated non-zero uid to prohibit kill,
ptrace, etc. Is chrooted into an empty, unwritable directory to prohibit
filesystem access. Sets ulimits to prohibit new files, sockets, etc.
Sets ulimits to prohibit forks.
.
TLS library
.
The tlswrapper is using BearSSL library which implements only secure
versions of TLS protocol (TLS1.0 - TLS1.2). And implements safe and
constant-time algorithms.
Description-md5:
Homepage: https://github.com/janmojzis/tlswrapper
Section: net
Priority: optional
Filename: pool/main/t/tlswrapper/tlswrapper_0~20230101-1_amd64.deb