[tor-bugs] #5791 [Tor bundles/installation]: Gather apparmor/selinux/seatbelt profiles for each component of TBB
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Thu Aug 2 21:41:22 UTC 2012
#5791: Gather apparmor/selinux/seatbelt profiles for each component of TBB
--------------------------------------+-------------------------------------
Reporter: arma | Owner: cypherpunks
Type: project | Status: assigned
Priority: normal | Milestone:
Component: Tor bundles/installation | Version:
Keywords: SponsorZ | Parent: #4522
Points: | Actualpoints:
--------------------------------------+-------------------------------------
Comment(by mikeperry):
Xephyr and Xnest are apparently two other ways of sandboxing X11 by
running nested X servers:
https://en.wikipedia.org/wiki/Xephyr
https://en.wikipedia.org/wiki/Xnest
They look like they might be a bit heavyweight for us, but worth noting
for the record.
Also, the NSA has this set of docs on securing X11 with SELinux:
http://www.nsa.gov/research/_files/selinux/papers/x11/t1.shtml
Not sure how much of that is actually implemented yet.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/5791#comment:22>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list