On Tue, Feb 24, 2015, at 11:08 AM, Hans-Christoph Steiner wrote: > Yeah, I was thinking about the code that controls the Tor binary, and has > the > ability to read all the status information. That's the part I was > thinking > that should be isolated. Does moving that stuff to a separate process > actually > isolate functionality from the BrowserActivity, or would it just isolate > the > direct interface to the Tor daemon? If malware just had to use the > internal > Orbot Java API to TorService rather than the Tor daemon itself and get > the > same result, I don't think the isolation would really provide much > benefit.
Hmm, actually the SharedPreferences would be the big impact that the full app has access to. The TorService itself is pretty limited in terms of the Intent Action it supports, but if you modify the prefs, you can change the bridge, set a specific exit/entrance, etc. I am open to removing the WebView integration, and maybe instead, we support direct download of the APK and/or even bundle inside of Orbot. +n _______________________________________________ List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev To unsubscribe, email: [email protected]
