[tor-bugs] #26910 [Core Tor/Tor]: Could tor drop privileges even earlier? (before trying to access anything on the filesystem beyond its torrc files)

Tor Bug Tracker & Wiki blackhole at torproject.org
Tue Jul 24 14:33:41 UTC 2018


#26910: Could tor drop privileges even earlier? (before trying to access anything
on the filesystem beyond its torrc files)
--------------------------+----------------------------------
 Reporter:  nusenu        |          Owner:  (none)
     Type:  enhancement   |         Status:  new
 Priority:  Medium        |      Milestone:  Tor: unspecified
Component:  Core Tor/Tor  |        Version:
 Severity:  Normal        |     Resolution:
 Keywords:                |  Actual Points:
Parent ID:                |         Points:
 Reviewer:                |        Sponsor:
--------------------------+----------------------------------

Comment (by nusenu):

 Replying to [comment:1 nickm]:
 > I'm not sure I understand: How would Tor know which user to switch to
 (or which other privileges to drop) if it has not first read the torrc
 file?

 sorry if I was not clear about that: I was suggesting to drop privileges
 *after* reading the torrc file

 > And would reading the torrc file not count as using the filesystem?

 reading the torrc file as the user that is used to start tor (root in this
 case is fine)

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/26910#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list