[or-cvs] r18024: {tor} AUTHENTICATE is really mandatory. No authentication is not q (tor/trunk/doc/spec)
nickm at seul.org
nickm at seul.org
Thu Jan 8 14:07:05 UTC 2009
Author: nickm
Date: 2009-01-08 09:07:05 -0500 (Thu, 08 Jan 2009)
New Revision: 18024
Modified:
tor/trunk/doc/spec/control-spec.txt
Log:
AUTHENTICATE is really mandatory. No authentication is not quite the default.
Modified: tor/trunk/doc/spec/control-spec.txt
===================================================================
--- tor/trunk/doc/spec/control-spec.txt 2009-01-08 13:41:36 UTC (rev 18023)
+++ tor/trunk/doc/spec/control-spec.txt 2009-01-08 14:07:05 UTC (rev 18024)
@@ -253,6 +253,10 @@
command, or sends PROTOCOLINFO more than once, Tor sends an error reply and
closes the connection.
+ To prevent some cross-protocol attacks, the AUTHENTICATE command is still
+ required even if all authentication methods in Tor are disabled. In this
+ case, the controller should just send "AUTHENTICATE" CRLF.
+
(Versions of Tor before 0.1.2.16 and 0.2.0.4-alpha did not close the
connection after an authentication failure.)
@@ -1591,7 +1595,9 @@
5.1. Authentication
- By default, the current Tor implementation trusts all local users.
+ If the control port is open and no authentication operation is enabled, Tor
+ trusts any local user that connects to the control port. This is generally
+ a poor idea.
If the 'CookieAuthentication' option is true, Tor writes a "magic cookie"
file named "control_auth_cookie" into its data directory. To authenticate,
More information about the tor-commits
mailing list