[tor-bugs] #2972 [Tor Client]: Allow ControlSocket to be group writable
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Fri Apr 22 16:39:42 UTC 2011
#2972: Allow ControlSocket to be group writable
-------------------------+--------------------------------------------------
Reporter: lunar | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Tor Client | Version: Tor: unspecified
Keywords: | Parent:
Points: | Actualpoints:
-------------------------+--------------------------------------------------
This is an attempt to move <http://bugs.debian.org/cgi-
bin/bugreport.cgi?bug=552556> foward.
Right now, ControlPort + CookieAuthFileGroupReadable offers a way for
specific users (members of the same group as the Tor process) to controel
a system-wide Tor daemon. It would be great to have a similar access
control mechanism for ControlSocket.
The attached patch is an attempt to implement such behaviour. It adds a
new configuration option, `UnixSocketsGroupWritable`, which when enabled,
will make socket `g+rw` upon creation.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/2972>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list