[tor-bugs] #5756 [Tor bundles/installation]: Seccomp system call whitelisting on Linux
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Thu May 3 14:44:18 UTC 2012
#5756: Seccomp system call whitelisting on Linux
--------------------------------------+-------------------------------------
Reporter: bugmenot | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Tor bundles/installation | Version:
Keywords: seccomp security sandbox | Parent:
Points: | Actualpoints:
--------------------------------------+-------------------------------------
Comment(by nickm):
It seems like this would support one of the things we'd hoped we could do
with Linux capabilities, but which they don't actually help with. (That
thing being disabling pieces functionality available to ordinary users.
Ordinary Linux caps only seemed to allow disabling root-level abilities.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5756#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list