[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #5756 [Tor bundles/installation]: Seccomp system call whitelisting on Linux

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #5756 [Tor bundles/installation]: Seccomp system call whitelisting on Linux
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Thu, 03 May 2012 14:44:18 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 03 May 2012 10:44:32 -0400
In-reply-to: <048.eb966739ca6d9224d1725401b1cd4e03@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <048.eb966739ca6d9224d1725401b1cd4e03@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#5756: Seccomp system call whitelisting on Linux
--------------------------------------+-------------------------------------
 Reporter:  bugmenot                  |          Owner:     
     Type:  enhancement               |         Status:  new
 Priority:  normal                    |      Milestone:     
Component:  Tor bundles/installation  |        Version:     
 Keywords:  seccomp security sandbox  |         Parent:     
   Points:                            |   Actualpoints:     
--------------------------------------+-------------------------------------

Comment(by nickm):

 It seems like this would support one of the things we'd hoped we could do
 with Linux capabilities, but which they don't actually help with.  (That
 thing being disabling pieces functionality available to ordinary users.
 Ordinary Linux caps only seemed to allow disabling root-level abilities.)

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5756#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #5756 [Development Progress]: Seccomp system call whitelisting on Linux
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #5651 [Metrics Utilities]: Annotation header with descriptor types
Next by Author: Re: [tor-bugs] #5748 [Company]: reduce cache time on blog
Previous by thread: Re: [tor-bugs] #5756 [Tor bundles/installation]: Seccomp system call whitelisting on Linux
Next by thread: Re: [tor-bugs] #5756 [Tor bundles/installation]: Seccomp system call whitelisting on Linux
Index(es):
- Author
- Thread