[tor-talk] Tor Browser Linux_don't extract to root
Jonathan Marquardt
mail at parckwart.de
Tue Apr 11 08:47:05 UTC 2017
On Mon, Apr 10, 2017 at 07:11:48PM -0500, Joe Btfsplk wrote:
> What is the reason(s) the TBB instructions say do not install (extract) TBB
> to root?
> Is it so the TBB files will be in a location where the user has write
> permissions, so that TBB updates can automatically D/L and install?
Yes, that's the biggest advantage, I think. We don’t want superold versions of
TBB to be used, do we?
> Other than that, does installing TBB to a location where anyone / anything
> has full r/w/x permissions (like in /home), weaken the security of Linux,
> compared to packages installed via a distro's software manager?
If "anyone / anything has full r/w/x permissions" in /home on your system,
you're doing something very wrong. Only the individual users should have write
permissions in their own home directories. On a multi-user system it is also a
good idea to give "world" zero permissions in your user home directory so no
other users can read your files.
--
4096R/1224DBD299A4F5F3
47BC 7DE8 3D46 2E8B ED18 AA86 1224 DBD2 99A4 F5F3
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20170411/9fde5815/attachment.sig>
More information about the tor-talk
mailing list