Tor & SELinux/SuSE 10 (also AppArmor question)

phobos at rootme.org phobos at rootme.org
Sat Jan 28 02:08:56 UTC 2006


On Fri, Jan 27, 2006 at 05:16:35PM -0800, firefox-gen at walala.org wrote 0.5K bytes in 14 lines about:
: I have SuSE Linux 10, and the latest alpha of Tor. Due to SELinux, I 
: can't run tor as anything but root and have it work correctly. This 
: prompts me to ask the following two related questions:
: 
: 1. How should I correctly configure SELinux on SuSE to be secure *and* 
: have tor have enough privelages to correctly download all the required 
: dir info, and
: 2. How can SELinux and/or Novell AppArmor be used to effectively lock 
: down and secure Tor and other potentially dangerous network programs?

	Two ways to do this:

	1) check out step four of
	http://tor.eff.org/cvs/tor/doc/tor-doc-unix.html

	2) profile it and come up with a better policy than I did. :)

-- 
Andrew



More information about the tor-talk mailing list