[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17367 [Applications/Tor Browser]: Swap files can contain evidence of browsing history

Subject: Re: [tor-bugs] #17367 [Applications/Tor Browser]: Swap files can contain evidence of browsing history
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 24 Oct 2016 22:40:51 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 24 Oct 2016 18:41:03 -0400
In-reply-to: <055.17c8821035851382cf09d7efe7295d49@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <055.17c8821035851382cf09d7efe7295d49@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17367: Swap files can contain evidence of browsing history
--------------------------------------+--------------------------
 Reporter:  arthuredelstein           |          Owner:  tbb-team
     Type:  defect                    |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Major                     |     Resolution:
 Keywords:  tbb-disk-leak             |  Actual Points:
Parent ID:  #17208                    |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------

Comment (by yawning):

 Replying to [comment:11 mikeperry]:
 > For another approach: I discussed this with some folks at OTF, and they
 suggested a "Secure Shutdown" option that attempts to allocate and zero
 all of the memory on the system in a malloc+memset loop, until malloc
 fails (presumably once all the swap space has been used). We'd want
 probably to do this from a separate process launched after Tor Browser
 actually exits, or at least after we're certain that the current Tor
 Browser heap is fully freed. We'd want to prompt the user from Tor Browser
 before doing this, since it will be slow and other apps may OOM, but
 otherwise this approach seems simple and cross-platform. It might do the
 trick?

 That won't work on the majority of Linux installs, due to memory over-
 commit (`malloc` never fails, and the OOM killer will kick in when the
 system freaks out trying to service page faults as you `memset`), and is
 totally pointless on OSX (as of 10.7, unless the user disabled swap
 encryption).

 I still stand by this being a user education problem.  The only OSes that
 don't have support for having the OS handle swap encryption are EOLed.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17367#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #18910 [Metrics/CollecTor]: distributing descriptors accross CollecTor instances
Next by Author: Re: [tor-bugs] #20077 [Core Tor/Tor]: Make is_sensitive_dir_purpose and purpose_needs_anonymity consistent
Previous by thread: Re: [tor-bugs] #17367 [Applications/Tor Browser]: Swap files can contain evidence of browsing history
Next by thread: Re: [tor-bugs] #17367 [Applications/Tor Browser]: Swap files can contain evidence of browsing history
Index(es):
- Author
- Thread