[tor-bugs] #21465 [Core Tor/Tor]: Tor relays fix data directory permissions, but tor clients do not
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Feb 15 03:42:51 UTC 2017
#21465: Tor relays fix data directory permissions, but tor clients do not
------------------------------+------------------------------
Reporter: teor | Owner:
Type: defect | Status: new
Priority: Medium | Milestone: Tor: unspecified
Component: Core Tor/Tor | Version:
Severity: Normal | Keywords: tor-client
Actual Points: | Parent ID:
Points: 0.5 | Reviewer:
Sponsor: |
------------------------------+------------------------------
When adding control socket support to chutney (#21462), I discovered that
relays set their data directory permissions to 0700 as a side-effect of
adding keys to the keys directory.
But clients don't, because they don't have any (filesystem) keys.
Is the client state file worth protecting with 0700?
Would we have many fewer ControlSocket permissions errors if we changed
the DataDirectory to 0700?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21465>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list