[tor-bugs] #15220 [Tor]: Allow SocksSockets writable by arbitrary user
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Mar 11 21:31:15 UTC 2015
#15220: Allow SocksSockets writable by arbitrary user
-----------------------------+--------------------------------
Reporter: sysrqb | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Tor: 0.2.7.x-final
Component: Tor | Version:
Resolution: | Keywords:
Actual Points: | Parent ID:
Points: |
-----------------------------+--------------------------------
Comment (by yawning):
Replying to [comment:9 nickm]:
> bug15220_026 has an implementation of what I think the Right Thing would
look like here. It's untested, though, and looks a little big. What do we
think?
Per the discussion from IRC, I think this is the right way to make things
less restrictive, with the caveat that something should happen if the user
attempts to configure a world-writable control socket, without any
authentication methods specified.
As for the "something" that happens when this crazy config is specified:
* Warning (bare minimum, IMO). There are single user systems out there
for which an unauthenticated control socket is ok.
* Error (what I personally favor). Said single user systems out there
still have groups, and all the code out there that can talk to the
controller should/does support authentication.
The general feeling is that this is feels a bit big for 0.2.6.x, though no
one came up with a better interim solution.
(If I missed anything in my summary please let me know.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15220#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list