Running Tor Browser Bundle in a sandbox
Dominick Grift
dominick.grift at gmail.com
Tue Aug 27 07:29:45 UTC 2013
On Mon, 2013-08-26 at 22:33 +0000, fedorauser wrote:
> Hi Dan,
>
> > What avc messages are you seeing?
>
> As Dominick anticipated I got:
>
> avc: denied { name_bind } for pid=23725 comm="tor" src=9150
> scontext=unconfined_u:unconfined_r:sandbox_net_client_t:s0:c353,c458
> tcontext=system_u:object_r:tor_port_t:s0 tclass=tcp_socket
>
>
> (in permissive mode and nis_enabled --> on)
You will probably want nis_enabled off if possible , it is a very coarse
boolean
More information about the selinux
mailing list