[tor-bugs] #8195 [Tor]: tor and capabilities
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Feb 24 16:18:24 UTC 2014
#8195: tor and capabilities
-----------------------------+--------------------------------
Reporter: weasel | Owner:
Type: enhancement | Status: needs_revision
Priority: normal | Milestone: Tor: 0.2.5.x-final
Component: Tor | Version:
Resolution: | Keywords: tor-relay security
Actual Points: | Parent ID:
Points: |
-----------------------------+--------------------------------
Comment (by nickm):
A good start! Some tests that we talked about are:
* Make sure that we can't setuid() afterwards.
* Make sure that we can't read some inaccessable file afterwards.
* Make sure that we _can_ bind to some low port afterwards.
* Make sure that we can't change capabilities afterwards.
And I think we thought that the sequence of actions should be:
* Get ready to retain the binding-low-ports capability.
* setuid.
* Drop all capabilities besides binding low ports. (Including dropping
all abilities that would allow us to regain other capabilities.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8195#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list