[tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there

Tor Bug Tracker & Wiki blackhole at torproject.org
Fri Apr 10 20:00:49 UTC 2015


#15649: [feature suggestion] Tor control protocol should listen on privileged UNIX
domain socket and allow an unauthenticated administration there
-----------------------------+-----------------
     Reporter:  yurivict271  |      Owner:
         Type:  enhancement  |     Status:  new
     Priority:  normal       |  Milestone:
    Component:  general      |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+-----------------

Comment (by yurivict271):

 Replying to [comment:5 yawning]:

 > Maybe tor should provide a `ControlPort` instance out of the box, and if
 it does, sure, it should be an AF_UNIX socket on systems that have
 AF_UNIX.  But it currently does not, and if things were to change that
 way, then what's the point of a magic superuser socket in the first place.

 Yes, tor should have always-on UNIX socket for ControlPort.

 You are right, no need for the "magic" superuser socket when
 authentication tokens on UNIX socket work. Tor instance can learn the
 connected user credentials through it. Notable example of this is MySQL
 server.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15649#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list