Personal Sandboxed Tor Browser development repo. https://gitweb.torproject.org/tor-browser/sandboxed-tor-browser.git/
|Yawning Angel 824c61cf62 dynlib: Search the system library path(s) as the last resort.||3 weeks ago|
|data||3 months ago|
|src||3 weeks ago|
|vendor||11 months ago|
|.gitignore||1 year ago|
|CODE_OF_CONDUCT.md||9 months ago|
|ChangeLog||3 months ago|
|LICENSE||1 year ago|
|Makefile||1 year ago|
|README.md||8 months ago|
I would build a great sandbox. And nobody builds sandboxes better than me, believe me. I will build a great, great sandbox on our application border. And I will have Tor Browser pay for that sandbox.
Tor Browser sandboxed somewhat correctly using bubblewrap. Obviously only works on Linux, and will NEVER support anything else since sandboxing is OS specific.
There are several unresolved issues that affect security and fingerprinting. Do not assume that this is perfect, merely "an improvement over nothing".
Build time dependencies:
Things that the sandbox breaks:
Places where the sandbox could be better:
/procfilesystem, worked around in the worst possible way. (https://bugs.torproject.org/20283)
~/Downloadsdirectories are mapped to the host