commit 6b6c7aa656e36ed67c7950b6ca7d367273b09697 Author: Robert Ransom <rransom.8774@gmail.com> Date: Mon Feb 20 08:49:16 2012 -0800 Document CookieAuthFile --- control-spec.txt | 8 +++++--- 1 files changed, 5 insertions(+), 3 deletions(-) diff --git a/control-spec.txt b/control-spec.txt index b9ee997..f583372 100644 --- a/control-spec.txt +++ b/control-spec.txt @@ -2101,9 +2101,11 @@ trusts any local user that connects to the control port. This is generally a poor idea. - If the 'CookieAuthentication' option is true, Tor writes a "magic cookie" - file named "control_auth_cookie" into its data directory. To authenticate, - the controller must send the contents of this file, encoded in hexadecimal. + If the 'CookieAuthentication' option is true, Tor writes a "magic + cookie" file named "control_auth_cookie" into its data directory (or + to another file specified in the 'CookieAuthFile' option). To + authenticate, the controller must send the contents of this file, + encoded in hexadecimal. If the 'HashedControlPassword' option is set, it must contain the salted hash of a secret password. The salted hash is computed according to the