[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor + SELinux sandbox = leak proof without VM overhead?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor + SELinux sandbox = leak proof without VM overhead?
From: "F. Fox" <kitsune.or@xxxxxxxxx>
Date: Sat, 21 Aug 2010 18:06:16 -0700
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sat, 21 Aug 2010 21:06:25 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=mP5B+6uRmKIOB7PkFvuGDRUWK6WOxSMf0ASfKnKfNYo=; b=Koin4XuJFu7v71P4eFYJdZ/iJlN7QwocOHqG08p6iCpYrdpIBXseI3SCRnv58rGLUV JYxITAyU7YNY6gl0N/h82RUIo6ThEOcS31TcF8VjJyZT+4AgEoFvWtcY0eywmlrO1iTO v7mTlko1mPXEKa3HjwasaqCCy1m+DJUSxEHyY=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=Iwh4PT/FfFu3GVZjQlBKLLm52O2EOL+whNhjxLYZcbCeLS5YDChWPy7+GXUsNsMl7r oXyOwih3ZKnqIswbU5g1sRA7OVomno3tLdSyDokEgdZoikey/C5RzeryBNb/O8haFYfc bQ6YVLlZL44FHxQIolD//BFK4jSQBZ8LXTTgU=
In-reply-to: <AANLkTika511+Ps71qdpZBOSxcv77bW3c1giVQkHu5Dx-@xxxxxxxxxxxxxx>
References: <AANLkTika511+Ps71qdpZBOSxcv77bW3c1giVQkHu5Dx-@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.10) Gecko/20100620 Icedove/3.0.5

It certainly sounds interesting. Full VM environments not only causesystem resource overhead, but maintenance overhead, too (that's alwaysbeen my biggest gripe about them).


F. Fox

On 08/21/2010 05:55 PM, Gregory Maxwell wrote:
(snip)

Has anyone looked into using the SELINUX sandbox
(http://danwalsh.livejournal.com/28545.html) to prevent leaks?   The
sandbox provides a high degree of application isolation.  It looks
like it would be pretty much trivial to add an option to the sandbox
front end program to only allow accesses to the tor socks port from
the isolated app.

With this users on a supporting platforms wouldn't have to use
wireshark to figure out if, say, pidgin, is leaking via DNS. They
could simply run the app inside the sandbox and be sure of it.

(snip)
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

References:
- Tor + SELinux sandbox = leak proof without VM overhead?
  - From: Gregory Maxwell

Prev by Author: DuckDuckGo now operates a Tor exit enclave
Next by Author: Re: polipo
Previous by thread: Tor + SELinux sandbox = leak proof without VM overhead?
Next by thread: Re: Tor + SELinux sandbox = leak proof without VM overhead?
Index(es):
- Author
- Thread