Allow torbrowser to access u2f devices

[b1rger]

Start of discussion, see https://redmine.tails.boum.org/code/issues/17153

@intrigeri: I have tried to refine the rules a bit. And I realized that there might be differences between U2F devices, the (older) Yubikey NEO needs an additional permission. There might be additional rules needed for other U2F devices.

[intrigeri]

LGTM, modulo the rule I've specifically commented about! Thank you :)

[intrigeri]

Hi,

We could only allow `c24{7,9}:*`?

Sounds good to me!

[b1rger]

Hi,

We could only allow c24{7,9}:*?

Sounds good to me!

I've updated the MR!

[GtyTz]

I was wondering if anyone could just point me in the right direction in order to add this patch to tails.

I'm a complete novice I have managed to instal tails and set up persistent etc. so i know the basics.
usually if i have problems, i'll go to git hub or reddit and i find the solution. tytpically thats just following the directions and go to terminal copy/paste and majority of the time it works.

however i tried just copy and pasting this code into terminal but i get a permission denied

did some research online and tails has a tutorial on how to update app armor https://tails.boum.org/contribute/release_process/tor-browser_AppArmor_patch/

however that too also gave me a permision denied. i tried twice, first said the software key was not recognised and asked if i wanted to proceed and since i trust tails website and where the info came from, i selected yes, after that the terminal just froze.

so i closed and tried again and got the other persion denied below

$ git clone git@gitlab.tails.boum.org:tails/torbrowser-launcher &&

cd torbrowser-launcher &&
git remote add salsa https://salsa.debian.org/pkg-privacy-team/torbrowser-launcher.git &&
git remote add upstream-repo https://github.com/micahflee/torbrowser-launcher
Cloning into 'torbrowser-launcher'...
git@gitlab.tails.boum.org: Permission denied (publickey).
fatal: Could not read from remote repository.
Please make sure you have the correct access rights
and the repository exists.

again if anyone could just point me in the right direction to find a solution
I know its something so stupid , but without the proper basics i have been spinning my wheels for a few days and its driving me bonkers hahaha

[intrigeri]

I was wondering if anyone could just point me in the right direction in order to add this patch to tails.

As per the link in the first line of this issue, this patch has been included in Tails since 4.6. Regardless, this GitHub is about the upstream development of torbrowser-launcher, so IMO Tails support questions are off-topic here. Instead, see https://tails.boum.org/support/ :)

[GtyTz]

thanks for getting back to me ,appreciate i'll try tails support then bc my yubikey 5 nfc wont work unless i parse apparmor found here https://blog.horan.hk/yubikey-5-setup.html and just like he says its not smart to do on an ongoing basis thanks again for getting back and pointing me in the right direction Sent with [ProtonMail](https://protonmail.com) Secure Email. ‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐

…

On Wednesday, June 2, 2021 7:36 AM, intrigeri ***@***.***> wrote: > I was wondering if anyone could just point me in the right direction in order to add this patch to tails. As per the link in the first line of this issue, this patch has been included in Tails since 4.6. Regardless, this GitHub is about the upstream development of torbrowser-launcher, so IMO Tails support questions are off-topic here. Instead, see https://tails.boum.org/support/ :) — You are receiving this because you commented. Reply to this email directly, [view it on GitHub](#434 (comment)), or [unsubscribe](https://github.com/notifications/unsubscribe-auth/AUJSK3FABBYN6WC733775FLTQXNOPANCNFSM4JEGFIQA).