[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8195 [Tor]: tor and capabilities

Subject: Re: [tor-bugs] #8195 [Tor]: tor and capabilities
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 24 Feb 2014 16:18:24 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 24 Feb 2014 11:18:35 -0500
In-reply-to: <046.f88f8ee712a6e7cbdb7cdaa5a030e0d2@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <046.f88f8ee712a6e7cbdb7cdaa5a030e0d2@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#8195: tor and capabilities
-----------------------------+--------------------------------
     Reporter:  weasel       |      Owner:
         Type:  enhancement  |     Status:  needs_revision
     Priority:  normal       |  Milestone:  Tor: 0.2.5.x-final
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:  tor-relay security
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+--------------------------------

Comment (by nickm):

 A good start!  Some tests that we talked about are:

   * Make sure that we can't setuid() afterwards.
   * Make sure that we can't read some inaccessable file afterwards.
   * Make sure that we _can_ bind to some low port afterwards.
   * Make sure that we can't change capabilities afterwards.

 And I think we thought that the sequence of actions should be:

   * Get ready to retain the binding-low-ports capability.
   * setuid.
   * Drop all capabilities besides binding low ports. (Including dropping
 all abilities that would allow us to regain other capabilities.)

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8195#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #9729 [Tor]: Make bridges publish additional ORPort addresses in their descriptor
Next by Author: [tor-bugs] #11046 [Tor]: Implement/Improve backtrace logging support
Previous by thread: Re: [tor-bugs] #8195 [Tor]: tor and capabilities
Next by thread: Re: [tor-bugs] #8195 [Tor]: tor and capabilities
Index(es):
- Author
- Thread