[tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable

Tor Bug Tracker & Wiki blackhole at torproject.org
Sun May 17 21:14:15 UTC 2015


#16070: Tor log doesn't have to be world readable
-----------------------------+-----------------
     Reporter:  yurivict271  |      Owner:
         Type:  defect       |     Status:  new
     Priority:  normal       |  Milestone:
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+-----------------

Comment (by yurivict271):

 These are some recommended practices and reasoning.

 But is there the documentation on how the third party apps should access
 tor for administration purposes? The above bug report says that group
 debian-tor is required. Is this formally described anywhere that the
 other, distinct group is required, which files should have which groups?
 Without such documentation other distros will improvise and do whatever
 they feel they need to fill in the blanks. (even under Debian brand, many,
 like Mint for ex., build their own modified packages.)

 On FreeBSD, for ex., arm package doesn't create any other group. I don't
 know what does it do for access. Probably only works as root.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16070#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list