subject:"\[tor\-talk\] restricting output to the tor process, when using Tor browser"

Re: [tor-talk] restricting output to the tor process, when using Tor browser

2020-01-28 Thread Mirimir

On 01/28/2020 04:21 AM, Nicolas Vigier wrote: > On Mon, 27 Jan 2020, Mirimir wrote: > >> But, in a Debian VM running Tor browser, I found that the tor process is >> running as the login user. And so iptables is totally useless. >> >> However, it's apparently easy to start Tor browser as its own us

Re: [tor-talk] restricting output to the tor process, when using Tor browser

2020-01-28 Thread Nicolas Vigier

On Mon, 27 Jan 2020, Mirimir wrote: > But, in a Debian VM running Tor browser, I found that the tor process is > running as the login user. And so iptables is totally useless. > > However, it's apparently easy to start Tor browser as its own user, > using Micah Lee's torbrowser-launcher.[0] Is th

[tor-talk] restricting output to the tor process, when using Tor browser

2020-01-27 Thread Mirimir

OK, so I don't use standalone Tor browser, just in Whonix. And when I use Tor in Debian, I use iptables rules like: *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] -A INPUT -s 127.0.0.1/32 -d 127.0.0.1/32 -j ACCEPT -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j A