[tor-relays] Questions regarding arm on Debian

Dennis Christ lists at ollic.de
Fri Nov 11 13:14:01 UTC 2016


> You don't need a shell for the debian-tor user. CookieAuthentication
> should work, if you set CookieAuthentication 1 in /etc/tor/torrc and are
> using an armrc file.
>
I think the problem with CookieAuthentication was that the cookie file 
control_auth_cookie gets written
to /var/lib/tor. This directory is only readable by user debian-tor and 
not even group readable. I have
put CookieAuthFileGroupReadable 1 into the config file. But with my 
standard user which is in the debian-tor group i cannot
access this file inside /var/lib/tor because the permissions of this 
directory are set up by tor on startup to 700.

> Try to have a look into /etc/default/tor and
> /usr/share/tor/tor-service-defaults-torrc, there should be some relevant
> settings.
>
> Hopefully it helps.
Maybe i should have add that i do not use the debian init.d script to 
start up tor but a native systemd service file.
I think its a shame that debian switched to systemd but still relays on 
init.d scripts for so many services. So /etc/default/tor does not get used.


More information about the tor-relays mailing list