Alpine Linux and grsecurity

Discuss usability issues, general maintenance, and general support issues for a grsecurity-enabled system.

Alpine Linux and grsecurity

Postby GrsecurityLinuxCisco » Wed Aug 19, 2015 3:40 pm

I am using Alpine linux distro and trying to run the tor browser bundle

Thing is, I have to execute start-tor-browser script, so in terminal I put command:


Nothing happens, the browser wont start cause Alpine Linux is using Trusted path execution, grsec.

Now if I put command, and enter my password:

sudo /home/alex/tor-browser_en-US/Browser/start-tor-browser

The browser starts without problem but the script is not suppose to be run as root or with root privileges, I think that running it with sudo is not secure at all and is not recommended.

The same goes for this other browser, I have to execute flashpeak-slimjet script

Is there anyway I can run the scripts without using sudo?
Or do I have to disable trusted path execution option in the kernel? If yes, how can I do that?
Or is imposible to run this 2 browsers in Alpine Linux distro?
Posts: 2
Joined: Sat Jan 17, 2015 7:12 pm

Re: Alpine Linux and grsecurity

Postby spender » Wed Aug 19, 2015 7:01 pm

Alpine Linux doesn't use a supported version of grsecurity, you'll have to get support from them. (Of course anyone else is free to chime in here if they want to solve this support question)

Posts: 2185
Joined: Wed Feb 20, 2002 8:00 pm

Re: Alpine Linux and grsecurity

Postby itoffshore » Tue Aug 25, 2015 11:33 pm

This has been answered on bugs.a.o

The problem was not TPE - the problem actually is Alpine uses Musl C (not GlibC). Running dmesg would have showed invalid opcode errors.

Run TAILS or WHONIX in KVM with libvirt on Alpine: install XFCE & then connect to the KVM desktop with SPICE.

'GrsecurityLinuxCisco' - perhaps you can add a link to this answer on the 3 other forums you asked this same question.
Posts: 3
Joined: Fri May 08, 2015 11:25 am

Re: Alpine Linux and grsecurity

Postby timbgo » Sun Aug 07, 2016 4:28 pm

First I had posted this other post of mine here in this very post that you are reading, because it is to the same topic. But...

But the topic title is terribly misleading for the journey that I continued on. And so I decided to open a new topic and moved there my post:

Use Tor browser on grsecurity-hardened system?

Miroslav Rovis
Zagreb, Croatia
Try refute: rootkit hooks in kernel,
linux capabilities for intrusion? (Linus?)
Posts: 295
Joined: Tue Apr 16, 2013 9:34 am

Return to grsecurity support