[tor-bugs] #4522 [Tor bundles/installation]: Add privilege separation for bundled browser

[Tor Bug Tracker & Wiki]

#4522: Add privilege separation for bundled browser
--------------------------------------+-------------------------------------
 Reporter:  kteel                     |          Owner:  cypherpunks
     Type:  enhancement               |         Status:  assigned   
 Priority:  major                     |      Milestone:             
Component:  Tor bundles/installation  |        Version:             
 Keywords:                            |         Parent:             
   Points:                            |   Actualpoints:             
--------------------------------------+-------------------------------------
Changes (by mikeperry):

 * cc: marlowe, trams (added)
  * status:  needs_information => assigned
  * owner:  mikeperry => cypherpunks


Comment:

 It's occurred to me that we can achieve this easily for platforms that
 support sandboxing by playing nicer with them in terms of using their
 native package formats.

 For the Linuxes, I don't think we have to be *that* nice. If we host our
 own repo, we can get away with tossing TBB in /etc/skel and creating a
 login script to sync it to users' homedirs.

 While we're at it, we can also have this package install the appropriate
 profile for the sandbox (AppArmor for Ubuntu, SELinux for Redhat-derived).

 For Mac, I expect the whole "Here's a package and its sandbox, please
 install them" process will be much smoother in 10.8.. If they let us into
 the app stores, that is...

 For the Linux side especially, this really is something we need community
 help with, I think...

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4522#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online