Is F@H Safe to Run?

Moderators: Site Moderators, PandeGroup

Is F@H Safe to Run?

Postby X-Wing » Fri Jun 14, 2019 6:33 pm

I got a question from a friend about whether or not F@H creates a security risk on host machines. I am wondering how best to answer this question as I don’t have enough knowledge of the precautions taken against compromising the F@H client software, the security if the client-server connection, and the security/integrity of the downloads by the client software. If anyone could shed more light on this than the FAQ page, that’d be great!
X-Wing
 
Posts: 15
Joined: Sat Apr 27, 2019 11:43 pm

Re: Is F@H Safe to Run?

Postby Joe_H » Fri Jun 14, 2019 7:33 pm

One of the FAQ pages has a response on the security issue - https://foldingathome.org/support/faq/miscellaneous/.

Basically the folding client is programmed to only communicate with designated servers, and the WU's are digitally signed. WU's will not be accepted from other servers, and even if someone managed to spoof a connection, the data files would not be accepted if they were not properly signed.
Image

iMac 2.8 i7 12 GB smp8, Mac Pro 2.8 quad 12 GB smp6
MacBook Pro 2.9 i7 8 GB smp3
Joe_H
Site Admin
 
Posts: 4534
Joined: Tue Apr 21, 2009 4:41 pm
Location: W. MA

Re: Is F@H Safe to Run?

Postby JimboPalmer » Fri Jun 14, 2019 9:31 pm

Any scenario where you would not be allowed to browse the internet, you should not Fold. F@H uses the same ports as a browser (IE, Firefox, Chrome, Safari, Edge, etc.)
Tsar of all the Rushers
I tried to remain childlike, all I achieved was childish.
A friend to those who want no friends
JimboPalmer
 
Posts: 899
Joined: Mon Feb 16, 2009 4:12 am
Location: Greenwood MS USA

Re: Is F@H Safe to Run?

Postby X-Wing » Fri Jun 14, 2019 9:46 pm

Ok thanks. I looked at the FAQ page and I saw the response, but it helps to have a little explanation. Thanks!
X-Wing
 
Posts: 15
Joined: Sat Apr 27, 2019 11:43 pm

Re: Is F@H Safe to Run?

Postby MeeLee » Sat Jun 15, 2019 4:07 am

I think from the peer perspective, the worst thing that could happen, is if someone can get the data you've received, and deciphers it, and basically can see what will be public information not long after.
The FAH client isn't big enough for hackers to use as malicious tool, to break in, or steal information.
Not sure if it even has those vulnerabilities.
FAHClient does have access to CPU and GPU resources.
MeeLee
 
Posts: 287
Joined: Tue Feb 19, 2019 10:16 pm


Return to Discussions of General-FAH topics

Who is online

Users browsing this forum: No registered users and 1 guest

cron