[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #20794 [Applications/Tor Browser Sandbox]: Track what mozilla is doing with their sandboxing efforts.

Subject: [tor-bugs] #20794 [Applications/Tor Browser Sandbox]: Track what mozilla is doing with their sandboxing efforts.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 27 Nov 2016 06:58:12 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 27 Nov 2016 01:58:21 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#20794: Track what mozilla is doing with their sandboxing efforts.
--------------------------------------------------+---------------------
     Reporter:  yawning                           |      Owner:  yawning
         Type:  task                              |     Status:  new
     Priority:  Medium                            |  Milestone:
    Component:  Applications/Tor Browser Sandbox  |    Version:
     Severity:  Normal                            |   Keywords:
Actual Points:                                    |  Parent ID:
       Points:                                    |   Reviewer:
      Sponsor:                                    |
--------------------------------------------------+---------------------
 https://wiki.mozilla.org/Security/Sandbox is where their sandboxing
 efforts are.  The goal of our sandboxing should be to augument such
 things, and not replace them.

 Skimming the Linux stuff it looks like they want to use `seccomp-bpf` and
 namespaces *with* `USER_NS`.  Life will get interesting/horrifying once
 non-USER_NS namespaces enter the picture, but till then, it's probably
 manageable.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20794>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #20681 [Metrics/Onionoo]: Remove Onionoo's lock file
Next by Author: [tor-bugs] #20796 [Metrics/Torflow]: TorFlow's ScanHandler can divide by zero when there are no unmeasured nodes
Previous by thread: Re: [tor-bugs] #20485 [HTTPS Everywhere/EFF-HTTPS Everywhere]: new ruleset: Open Police Complaints
Next by thread: [tor-bugs] #20795 [- Select a component]: Torbrowser crashes if it can't DNS resolve the Socks5Proxy host in torrc
Index(es):
- Author
- Thread