tor-browser/sandboxed-tor-browser, branch sandboxed-tor-browser-0.0.8

Do the release ritual for sandboxed-tor-browser-0.0.8.

2017-06-19T12:26:46+00:00

Unbreak systems that don't have a ~/.Xauthority.

2017-06-19T12:18:05+00:00

Fallout from #22648, broke on my Fedora VM that uses XWayland, works
now.

Bug 22607: Make it clear that basically 0 active development is happening.

2017-06-19T12:11:44+00:00

No functional changes.

Bug 22470: Resync the bridges.

2017-06-19T11:51:41+00:00

Exactly what it says on the tin.

Bug 20776: Remove the X11 `MIT-SHM` workaround from the stub.

2017-06-19T11:32:45+00:00

ESR52 has the workarounds for the libcairo brain damage, and thanks to
level.

Bug 22650: Make it clear that Pulse Audio is potentially dangerous to enable.

2017-06-19T11:10:42+00:00

Per "Jann Horn of Google Project Zero", PulseAudio is a potential vector
for sandbox escapes. While this is not part of the threat model in current
releases, it should be documented as such in the UI.

Bug 22648: Prevent the "easy" to fix X11 related sandbox escapes.

2017-06-19T10:44:41+00:00

Per Jann Horn of Google Project Zero, there's a few trivial ways to do
horrific things via the X11 socket, because of the X protocol.

This hopefully closes some of them off by imposing a whitelist on X11
protocol extensions.

Note that it is likely that Firefox can still do horrific things via
X11, so this will need to be improved over time, but, as the README.md
says:

   There are several unresolved issues that affect security and
   fingerprinting.  Do not assume that this is perfect, merely
   "an improvement over nothing".

Add one of these, before I get one I don't like forced on me.

2017-06-14T07:05:55+00:00

Bump the version to 0.0.8-dev, so I can do development again.

2017-05-22T10:09:28+00:00

Do the release ritual for sandboxed-tor-browser-0.0.7.

2017-05-22T10:06:53+00:00