[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #10943 [Tor Messenger]: Sandboxing Instantbird

Subject: Re: [tor-bugs] #10943 [Tor Messenger]: Sandboxing Instantbird
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 21 Jul 2015 21:04:47 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 21 Jul 2015 17:04:54 -0400
In-reply-to: <047.5248e4ce38b06cf4284692b656e823e4@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.5248e4ce38b06cf4284692b656e823e4@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#10943: Sandboxing Instantbird
-------------------------------+------------------------------------------
     Reporter:  sukhbir        |      Owner:  ioerror
         Type:  task           |     Status:  new
     Priority:  normal         |  Milestone:
    Component:  Tor Messenger  |    Version:
   Resolution:                 |   Keywords:  SponsorO, TorMessengerPublic
Actual Points:                 |  Parent ID:
       Points:                 |
-------------------------------+------------------------------------------

Comment (by ioerror):

 We should ensure that we review the build process to make it both
 deterministic and to ensure that we enable all of the relevant hardening
 options.

 Furthermore, I'd like to point out that while not exactly sandboxing, we
 should build any relevant Instantbird component with ASan:
 https://www.chromium.org/developers/testing/addresssanitizer - this means
 that on OSX and GNU/Linux, we should be doing 64bit builds. My suggestion
 would be to produce only 64bit builds that meet our security expectations.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10943#comment:7>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #10943 [Tor Messenger]: Sandboxing Instantbird
Next by Author: Re: [tor-bugs] #10943 [Tor Messenger]: Sandboxing Instantbird
Previous by thread: Re: [tor-bugs] #10943 [Tor Messenger]: Sandboxing Instantbird
Next by thread: Re: [tor-bugs] #10943 [Tor Messenger]: Sandboxing Instantbird
Index(es):
- Author
- Thread