Page 1 of 1

Alpine Linux and grsecurity

PostPosted: Wed Aug 19, 2015 3:40 pm
by GrsecurityLinuxCisco
I am using Alpine linux distro and trying to run the tor browser bundle

http://alpinelinux.org/
https://www.torproject.org/

Thing is, I have to execute start-tor-browser script, so in terminal I put command:

/home/alex/tor-browser_en-US/Browser/start-tor-browser

Nothing happens, the browser wont start cause Alpine Linux is using Trusted path execution, grsec.

Now if I put command, and enter my password:

sudo /home/alex/tor-browser_en-US/Browser/start-tor-browser

The browser starts without problem but the script is not suppose to be run as root or with root privileges, I think that running it with sudo is not secure at all and is not recommended.

The same goes for this other browser, I have to execute flashpeak-slimjet script

http://www.slimjet.com/en/dlpage.php

Is there anyway I can run the scripts without using sudo?
Or do I have to disable trusted path execution option in the kernel? If yes, how can I do that?
Or is imposible to run this 2 browsers in Alpine Linux distro?

Re: Alpine Linux and grsecurity

PostPosted: Wed Aug 19, 2015 7:01 pm
by spender
Alpine Linux doesn't use a supported version of grsecurity, you'll have to get support from them. (Of course anyone else is free to chime in here if they want to solve this support question)

-Brad

Re: Alpine Linux and grsecurity

PostPosted: Tue Aug 25, 2015 11:33 pm
by itoffshore
This has been answered on bugs.a.o

The problem was not TPE - the problem actually is Alpine uses Musl C (not GlibC). Running dmesg would have showed invalid opcode errors.

Run TAILS or WHONIX in KVM with libvirt on Alpine: install XFCE & then connect to the KVM desktop with SPICE.

'GrsecurityLinuxCisco' - perhaps you can add a link to this answer on the 3 other forums you asked this same question.

Re: Alpine Linux and grsecurity

PostPosted: Sun Aug 07, 2016 4:28 pm
by timbgo
First I had posted this other post of mine here in this very post that you are reading, because it is to the same topic. But...

But the topic title is terribly misleading for the journey that I continued on. And so I decided to open a new topic and moved there my post:

Use Tor browser on grsecurity-hardened system?
viewtopic.php?f=3&t=4524

Regards!
---
Miroslav Rovis
Zagreb, Croatia
http://www.CroatiaFidelis.hr
Try refute: rootkit hooks in kernel,
linux capabilities for intrusion? (Linus?)