[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor & SELinux/SuSE 10 (also AppArmor question)

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor & SELinux/SuSE 10 (also AppArmor question)
From: phobos@xxxxxxxxxx
Date: Fri, 27 Jan 2006 21:08:56 -0500
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Fri, 27 Jan 2006 21:09:22 -0500
In-reply-to: <43DAC5F3.2020709@walala.org>
Mail-followup-to: phobos@xxxxxxxxxx, or-talk@xxxxxxxxxxxxx
References: <20060128000925.GY7649@localhost.localdomain> <43DAC5F3.2020709@walala.org>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mutt/1.4.1i

On Fri, Jan 27, 2006 at 05:16:35PM -0800, firefox-gen@xxxxxxxxxx wrote 0.5K bytes in 14 lines about:
: I have SuSE Linux 10, and the latest alpha of Tor. Due to SELinux, I 
: can't run tor as anything but root and have it work correctly. This 
: prompts me to ask the following two related questions:
: 
: 1. How should I correctly configure SELinux on SuSE to be secure *and* 
: have tor have enough privelages to correctly download all the required 
: dir info, and
: 2. How can SELinux and/or Novell AppArmor be used to effectively lock 
: down and secure Tor and other potentially dangerous network programs?

	Two ways to do this:

	1) check out step four of
	http://tor.eff.org/cvs/tor/doc/tor-doc-unix.html

	2) profile it and come up with a better policy than I did. :)

-- 
Andrew

References:
- (FWD) quick question on exit policy...
  - From: Roger Dingledine
- Tor & SELinux/SuSE 10 (also AppArmor question)
  - From: ADB

Prev by Author: Re: Warning message in v0.1.1.10-alpha
Next by Author: Tor uninstaller for Mac OS X as requested
Previous by thread: Tor & SELinux/SuSE 10 (also AppArmor question)
Next by thread: FW: EFFector 19.04: Action Alert - Stop Congress from Mandating Secret Technology!]
Index(es):
- Author
- Thread