Dropping 'Run With Limited Capabilities' (4483fb606) - tor-webwml.git

@@ -424,7 +424,6 @@ meetings around the world.</li>
 
     <p>
     <b>Project Ideas:</b><br />
-    <i><a href="#limitCapabilities">Run With Limited Capabilities</a></i><br />
     <i><a href="#torCleanup">Tor Codebase Cleanup</a></i><br />
     <i><a href="#httpsImpersonation">HTTPS Server Impersonation</a></i><br />
     <i><a href="#chutneyExpansion">Make Chutney Do More, More Reliably</a></i>
@@ -973,40 +972,6 @@ meetings around the world.</li>
 
     </li>
 
-    <a id="limitCapabilities"></a>
-    <li>
-    <b>Run With Limited Capabilities</b>
-    <br>
-    Effort Level: <i>Medium to High</i>
-    <br>
-    Skill Level: <i>High</i>
-    <br>
-    Likely Mentors: <i>Nick (nickm)</i>
-    <p>
-    Many modern operating systems give a running program the ability to drop
-    capabilities that it no longer needs, and other ways for a program to run
-    pieces of itself in a sandbox with diminished privileges.
-    </p>
-
-    <p>
-    We'd like to do this with Tor, to improve its resistance to attacks.  The
-    easiest areas to address would be on systems like <a
-    href="https://lwn.net/Articles/475361/">recent Linux kernels</a> that make
-    it easy to drop or restrict the set of syscalls that a program can invoke.
-    That's a great project, but probably not big enough for an internship just
-    on its own.  For that, we'd want to make progress on at least multiple
-    platforms, or look into refactoring Tor into pieces that need more
-    privileges and pieces that don't with an eye towards sandboxing them
-    differently.
-    </p>
-
-    <p>
-    See tickets <a href="https://trac.torproject.org/7005">#7005</a> and <a
-    href="https://trac.torproject.org/5219">#5219</a>, and their descendants,
-    for more information.
-    </p>
-    </li>
-
     <a id="torCleanup"></a>
     <li>
     <b>Tor Codebase Cleanup</b>


...	...	@@ -424,7 +424,6 @@ meetings around the world.</li>
424	424
425	425	<p>
426	426	<b>Project Ideas:</b><br />
427		- <i><a href="#limitCapabilities">Run With Limited Capabilities</a></i><br />
428	427	<i><a href="#torCleanup">Tor Codebase Cleanup</a></i><br />
429	428	<i><a href="#httpsImpersonation">HTTPS Server Impersonation</a></i><br />
430	429	<i><a href="#chutneyExpansion">Make Chutney Do More, More Reliably</a></i>
...	...	@@ -973,40 +972,6 @@ meetings around the world.</li>
973	972
974	973	</li>
975	974
976		- <a id="limitCapabilities"></a>
977		- <li>
978		- <b>Run With Limited Capabilities</b>
979		- <br>
980		- Effort Level: <i>Medium to High</i>
981		- <br>
982		- Skill Level: <i>High</i>
983		- <br>
984		- Likely Mentors: <i>Nick (nickm)</i>
985		- <p>
986		- Many modern operating systems give a running program the ability to drop
987		- capabilities that it no longer needs, and other ways for a program to run
988		- pieces of itself in a sandbox with diminished privileges.
989		- </p>
990		-
991		- <p>
992		- We'd like to do this with Tor, to improve its resistance to attacks. The
993		- easiest areas to address would be on systems like <a
994		- href="https://lwn.net/Articles/475361/">recent Linux kernels</a> that make
995		- it easy to drop or restrict the set of syscalls that a program can invoke.
996		- That's a great project, but probably not big enough for an internship just
997		- on its own. For that, we'd want to make progress on at least multiple
998		- platforms, or look into refactoring Tor into pieces that need more
999		- privileges and pieces that don't with an eye towards sandboxing them
1000		- differently.
1001		- </p>
1002		-
1003		- <p>
1004		- See tickets <a href="https://trac.torproject.org/7005">#7005</a> and <a
1005		- href="https://trac.torproject.org/5219">#5219</a>, and their descendants,
1006		- for more information.
1007		- </p>
1008		- </li>
1009		-
1010	975	<a id="torCleanup"></a>
1011	976	<li>
1012	977	<b>Tor Codebase Cleanup</b>
1013	978