[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#27394] [PATCH] gnu: tor: Add seccomp support.

From: ng0
Subject: [bug#27394] [PATCH] gnu: tor: Add seccomp support.
Date: Fri, 16 Jun 2017 12:46:39 +0000

Rutger Helling transcribed 2.6K bytes:
> Hey ng0, 
> I think that ticket references whether the default torrc should have
> "Sandbox 1".

I understood the Whonix mail, which is how I got to the trac of tor,
in the way that they don't enable seccomp because tor does not enable
it as default. I'm not 100% positive on this, but I think I used
tor with +seccomp and hardening in Gentoo for a very long time.

> This patch doesn't do that, you still have to set that
> manually if you want to use it. It only gives you the option (Tor will
> just ignore that option in Guix right now). 
> I also don't think that hardening and the sandbox bite each other in any
> way. 
> On 2017-06-16 14:01, ng0 wrote:
> > Rutger Helling transcribed 2.5K bytes: 
> > 
> >> Hello, 
> >> 
> >> this patch adds seccomp support to tor.
> > 
> > There's the question if we would want that.
> > tor doesn't enable it by default, see: 
> >
> > But we also enable hardening by default, which differs from the tor default.
> > I have no problem with moving unstable features in, but hardening
> > seems much more tested to me than seccomp.

OpenPG: A88C8ADD129828D7EAC02E52E22F9BBFEE348588

Attachment: signature.asc
Description: PGP signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]