[tor-bugs] #5791 [Tor Browser]: Gather apparmor/selinux/seatbelt profiles for each component of TBB
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Jan 21 19:41:23 UTC 2016
#5791: Gather apparmor/selinux/seatbelt profiles for each component of TBB
----------------------------------------+--------------------------
Reporter: arma | Owner: erinn
Type: project | Status: assigned
Priority: Medium | Milestone:
Component: Tor Browser | Version:
Severity: Normal | Resolution:
Keywords: tbb-security, tbb-hardened | Actual Points:
Parent ID: #4522 | Points:
Sponsor: |
----------------------------------------+--------------------------
Comment (by yawning):
Was feeling inspired despite having some death flu Influenza variant, so I
played around with firejail.
https://git.schwanenlied.me/yawning/tor-firejail
IIRC AppArmor doesn't do seccomp-bpf based sandboxing, so I view some of
the functionality as complimentary (Though firejail needs to be SUID root
as a consequence since a lot of the operations involved in setting up a
sandbox are privileged).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5791#comment:43>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list