[tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Apr 14 21:37:33 UTC 2015
#15649: [feature suggestion] Tor control protocol should listen on privileged UNIX
domain socket and allow an unauthenticated administration there
-----------------------------+-----------------
Reporter: yurivict271 | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: general | Version:
Resolution: | Keywords:
Actual Points: | Parent ID:
Points: |
-----------------------------+-----------------
Comment (by yurivict271):
Yes, cookie is good.
But I still like the idea of auto-login for root (privileged login).
Please note that MySQL server uses this, for ex.
Also please note, that cookie approach is inherently less secure, because
cookie can be accidentally disseminated by root. Auto-login doesn't suffer
from the same problem.
Also UNIX socket is a must.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15649#comment:13>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list