On Wed, Aug 24, 2016 at 05:33:43PM +0200, Jan Vidar Krey wrote: > On Wed, Aug 24, 2016, at 16:43, Aeris wrote: > > > 2) security is better > > > > Sorry to say that, but : no. It’s very weaker than plain old Debian > > package. > > > > This is a matter of perspective on the "security" definition. > > The snaps does run in a separate container group, so it does have > some more layers of isolation to the rest of the system. > This means it is probably better to install an untrusted snap > than adding another untrusted APT source repository for your > system.
That's great, except you _really_ shouldn't be installing an untrusted _anything_ on your system, much less an untrusted tor package. And implying that this system magically makes untrusted things safe and suitable for install on a working machine is in my opinion a terrible precedent to set. A malicious tor install can do plenty of harm even if it was fully isolated from the rest of the machine. If something is untrusted, don't install it. Period. --Sean _______________________________________________ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays