Sandboxing in Tor Browser
Here's a parent ticket to track efforts to sandbox Tor Browser. Please use this ticket to discuss various approaches and link to email discussions where available.
Activity
FWIW, I'm vaguely against using my modified
start-tor-browserscript (#19055 (moved)) for the official Tor Browser sandboxing efforts, since there's a bunch of pitfalls to the approach I took. This doesn't mean that firejail is unsuitable (it's probably still the most expedient approach for Linux), just the way I integrated it when I first started looking at sandboxing stuff is suboptimal.I have ideas on "how to do it better", just wanted to comment that my views on certain things have shifted a bit.
Trac:
Description: Here's a parent ticket to track efforts to sandbox of Tor Browser. Please use this ticket to discuss various approaches and link to email discussions where available.to
Here's a parent ticket to track efforts to sandbox Tor Browser. Please use this ticket to discuss various approaches and link to email discussions where available.
In or Of TBB? (Content or App?) https://wiki.mozilla.org/Security/Sandbox
As I just posted to tor-dev@: https://git.schwanenlied.me/yawning/sandboxed-tor-browser
Linux only.
This is substantially less bad than my prior attempts with firejail, and it even includes a launcher process that handles keeping the browser installed and up to date. It's probably not ready for production use.
Replying to bugzilla:
In or Of TBB? (Content or App?) For "Of" effort on Windows: CIS (Comodo Internet Security suite) sandbox could be recommended (free). https://help.comodo.com/topic-72-1-623-7754-The-Sandbox---An-Overview.html
(@mcs/brade: the main ticket uses
tbb-sandboxing, sotbb-sandboxlooks confusing.)
Replying to bugzilla:
(@mcs/brade: the main ticket uses
tbb-sandboxing, sotbb-sandboxlooks confusing.)Thanks. Fixed in #20304 (moved).
mentioned in issue #20121 (closed)
mentioned in issue #31694 (moved)
moved to tpo/applications/tor-browser#19750
