[Pkg-anonymity-tools] torbrowser-launcher 0.2.0 - apparmor bug
intrigeri
intrigeri at debian.org
Tue May 19 12:09:38 UTC 2015
u wrote (19 May 2015 11:21:32 GMT) :
> This actually seems to be due to
> /etc/apparmor.d/torbrowser.start-tor-browser.
Trying to confine everything is tempting, but it's not always the best
strategy, especially when maintainability and/or not breaking things
for users of Debian stable is seen as important.
I've suggested upstream to simply give up confining that script:
https://github.com/micahflee/torbrowser-launcher/issues/181#issuecomment-103414762
Perhaps we can do that in Debian right now?
There's been too much AppArmor-related breakage of TBL in Debian
already, and I'm worried that it may be contributing to building
a "AppArmor breaks things, just disable AppArmor" culture, which would
be a serious problem IMO. Let's try to carefully balance this
long-term strategy matter with the value of confining stuff (or not).
In the case at hand, IMO that value is tiny (if strictly positive at
all), so for me the way to go is pretty clear.
Cheers!
More information about the Pkg-anonymity-tools
mailing list