[tor-bugs] #14270 [Tor Browser]: Make Tor Browser work with SocksSocket option
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Jan 22 11:17:55 UTC 2015
#14270: Make Tor Browser work with SocksSocket option
-----------------------------+--------------------------
Reporter: gk | Owner: tbb-team
Type: project | Status: new
Priority: normal | Milestone:
Component: Tor Browser | Version:
Resolution: | Keywords: tbb-security
Actual Points: | Parent ID:
Points: |
-----------------------------+--------------------------
Comment (by gk):
Replying to [comment:3 intrigeri]:
> Is my understanding correct that this will bring us security
improvements if, and only if, Tor Browser is somehow confined by the OS to
not be allowed to open other kinds of sockets (most notably INET ones)?
Confinement by OS is one option, yes, but patching Tor Browser to disallow
other kinds of sockets would be another one. There might be other security
improvements possible if one does neither of the above things but I am
currently not aware of them. The current idea is to use the SocksSocket
option + confinement (e.g. done by AppAmor).
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/14270#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list