[tor-bugs] #23271 [Core Tor/Tor]: control_auth_cookie isn't deleted when tor stops
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Aug 18 19:22:22 UTC 2017
#23271: control_auth_cookie isn't deleted when tor stops
--------------------------+-----------------------------------
Reporter: yurivict271 | Owner: (none)
Type: defect | Status: needs_information
Priority: Medium | Milestone: Tor: unspecified
Component: Core Tor/Tor | Version: Tor: 0.3.0.10
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------+-----------------------------------
Comment (by yurivict271):
> what risk does that file pose if its contents get disclosed?
IMO, no risk. However, people might assume that control port is available
since the cookie is still present. IMO, this is a minor defect that the
file is left over when it isn't needed. This can create some confusion
when it isn't needed to be that way.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23271#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list