main focus of project? #35

adrelanos · 2018-08-27T06:38:19Z

I am wondering what is the main focus of your project?

a) Adding torification to applications which don't come with native torification or
b) better guaranteed torification (absence of leaks going through clearnet) by launching applications isolated in Linux network namespaces?

lesion · 2018-08-28T20:33:29Z

isolation is why orjail is born in the first place.
I found many ways a software could leak data while using tor with torify, so I decided to create a jail to handle this issue, and here we are 😃

(quoting README.md :

if you find a way to deanonimize a program running inside orjail (also a shell with root privileges) would be nice to share it with us).

a long-term project would be to rewrite it in C, it will make it a bit more serious.

adrelanos · 2018-08-28T20:40:49Z

Sounds great!

Which advantages a rewrite in C bring? Could you interface with linux namespaces natively, without calling external binaries such as ip and iptables? Which would then result in a speedup? On the other hand the current bash implementation is small, simple, beautiful and unlikely to introduce exploitable vulnerabilities. Might a C implementation be actually more vulnerable? Even for a python rewrite I see no incentive.

lesion · 2018-08-30T21:57:29Z

Which advantages a rewrite in C bring?
I think the surface attack is smaller (imho):

let's say an attacker could change your environment before running orjail: using bash it takes total control (e.g. could change $PATH order and create an iptables wrapper, in C you would use libiptc)
we're currently using two different wrapper to run your final command: ip netns exec to join the network namespace, and unshare to split ipc/process/mount namespaces. in C would be cleaner.
also the usage of sudo to drop privileges as we're doing now is not so good, in C would be way better

adrelanos · 2018-08-31T17:03:33Z

lesion:

> Which advantages a rewrite in C bring? I think the surface attack is smaller (imho): - let's say an attacker could change your environment before running orjail: using bash it takes total control (e.g. could change $PATH order and create an iptables wrapper, in C you would use libiptc)

I guess an attacker who can change the environment has already compromised the system and can do worse stuff anyhow?

travankor · 2020-02-26T02:26:15Z

Why not rewrite in Go? Or Rust?

bakulf · 2020-02-26T15:17:14Z

Rust +1

gibix mentioned this issue Aug 28, 2018

Docs upgrade #42

Open

5 tasks

gibix added question project labels Aug 31, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

main focus of project? #35

main focus of project? #35

adrelanos commented Aug 27, 2018

lesion commented Aug 28, 2018

adrelanos commented Aug 28, 2018

lesion commented Aug 30, 2018

adrelanos commented Aug 31, 2018 via email

travankor commented Feb 26, 2020

bakulf commented Feb 26, 2020

main focus of project? #35

main focus of project? #35

Comments

adrelanos commented Aug 27, 2018

lesion commented Aug 28, 2018

adrelanos commented Aug 28, 2018

lesion commented Aug 30, 2018

adrelanos commented Aug 31, 2018 via email

travankor commented Feb 26, 2020

bakulf commented Feb 26, 2020