[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] More tor browser sandboxing fun.

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] More tor browser sandboxing fun.
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Wed, 21 Sep 2016 13:57:32 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 21 Sep 2016 13:58:28 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=cubkOtxTy57pxR4RYAaQPBRDW7CpSF9qOlpFEt3Mq3A=; b=rM3I6uDoMyLg1Mr8TztHvEVamMRepMSTt8Apyh7sOIMUmz9iIUcFqIKqKDPNv6UrLw 1tBJtppIzdWYPlrYQMrswYswMiCP9f4UkpLN4kdBbGzwGa8US3ga0ten9hyK7C0feL+Y QS0FHky22sf5cVt51KvXGOwxu1lVoxKbE0bfBZkY+7iELqr9HJaOZm3Ud81SmbLK4cbk 8TkrmZ97OW5d5tOVxZl7ByUqgrGj7LsnQSl9nh1QdoKYDgeKwNCbngmGjjZ5QiuLvV53 S8Uum7NUOBFKs0ljcGiu8z6FVDtfDBFUYls/7SfBumGVkTf2nE4KGrKXDaSHNKlPZba5 wnLQ==
In-reply-to: <20160921093331.2d74417d@schwanenlied.me>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <20160921093331.2d74417d@schwanenlied.me>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, Sep 21, 2016 at 5:33 AM, Yawning Angel <yawning@xxxxxxxxxxxxxxx> wrote:
> Where: https://git.schwanenlied.me/yawning/sandboxed-tor-browser

> X11 is a huge mess of utter fail. Since the sandboxed processes get direct access to the host X server, this is an exploitation vector.

Is anyone actually actively throwing the full audit gamut
at X11 these days, or is it still just one giant pile of 30 year
legacy waiting to explode?

> Really, just fuck off and leave me alone.

Oh no, the concept of one toplevel sig over a pile of embedded
sigs and infrastructure underneath, is useful. Kindof like
how signing a monotone or git repository is useful... a single
and simply checkable root from which all crap piles floweth.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] More tor browser sandboxing fun.
  - From: Stanisław Kosma

References:
- [tor-dev] More tor browser sandboxing fun.
  - From: Yawning Angel

Prev by Author: Re: [tor-dev] Potential regression when binding sockets to interface without default route
Next by Author: Re: [tor-dev] Potential regression when binding sockets to interface without default route
Previous by thread: [tor-dev] More tor browser sandboxing fun.
Next by thread: Re: [tor-dev] More tor browser sandboxing fun.
Index(es):
- Author
- Thread