[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #14270 [Tor Browser]: Make Tor Browser work with SocksSocket option
#14270: Make Tor Browser work with SocksSocket option
-----------------------------+--------------------------
Reporter: gk | Owner: tbb-team
Type: project | Status: new
Priority: normal | Milestone:
Component: Tor Browser | Version:
Resolution: | Keywords: tbb-security
Actual Points: | Parent ID:
Points: |
-----------------------------+--------------------------
Comment (by gk):
Replying to [comment:3 intrigeri]:
> Is my understanding correct that this will bring us security
improvements if, and only if, Tor Browser is somehow confined by the OS to
not be allowed to open other kinds of sockets (most notably INET ones)?
Confinement by OS is one option, yes, but patching Tor Browser to disallow
other kinds of sockets would be another one. There might be other security
improvements possible if one does neither of the above things but I am
currently not aware of them. The current idea is to use the SocksSocket
option + confinement (e.g. done by AppAmor).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/14270#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs