Control: tag -1 + moreinfo Hi,
Henrik Ahlgren wrote (03 Dec 2014 18:04:27 GMT) : > Please consider removing the line > #include <abstractions/nameservice> > from /etc/apparmor.d/abstractions/tor. In my testing tor seems to > function just fine without it; I haven't seen any errors reported to > audit.log or tor's own log. The nameserver abstraction grants access > to e.g. /etc/passwd that could reveal the identity of the owner of the > machine. If I remove that line, then the system Tor daemon fails to start here with: [notice] Tor v0.2.5.10 (git-43a5f3d91e726291) running on Linux with Libevent 2.0.21-stable, OpenSSL 1.0.1j and Zlib 1. [notice] Read configuration file "/usr/share/tor/tor-service-defaults-torrc". [notice] Read configuration file "/etc/tor/torrc". [warn] Error setting configured user: debian-tor not found [warn] Failed to parse/validate config: Problem with User value. See logs for details. Did you test this usecase? -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
