[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
[tor-bugs] #5791 [Tor bundles/installation]: Gather apparmor/selinux/sandbox instructions for each component of TBB
#5791: Gather apparmor/selinux/sandbox instructions for each component of TBB
--------------------------------------+-------------------------------------
Reporter: arma | Owner: erinn
Type: project | Status: new
Priority: normal | Milestone: Sponsor Z: March 1, 2013
Component: Tor bundles/installation | Version:
Keywords: | Parent:
Points: | Actualpoints:
--------------------------------------+-------------------------------------
It's increasingly clear that shipping TBB without any "system call
permissions" wrappers is an arms race that is too easy to lose. Bug 5741
is the latest of what will continue to be many instances.
The Tor wiki has a variety of instructions on putting your TBB in a VM, or
running it wrapped by apparmor, or somebody saying the word SELinux, etc.
We should gather all these instructions together, and start vetting them
with the goal of integrating as many as we can into the main build
processes, and providing the rest as "for experts, you can be even safer
if".
We need a volunteer with good security taste to get this started. I could
easily see this project being a bounty too.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5791>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs