bad security setting for win32 tor service
Bob Monfort
monfster at gmail.com
Fri Aug 19 19:28:51 UTC 2005
Hi-
> BM> encrypted using xp EFS
>
> that's pretty useless for a service-account, the password is somewere
> on the harddisk
It certainly isn't a totally secure solution, I was just doing that in
reference to J. Random User's ability to get the keys (either remotely or
locally). Of course locks on doors are only to keep the honest people out.
> BM> Is running it as LocalService better?
>
> I'm not sure.
>
> You should delete the membership of the Tor-account in the group
> "Users". Then the Toraccount has the same rights as the User Guest.
> run: lusrmgr.msc
> or
> net LOCALGROUP Users <Tor_Service_User> /DELETE
OK, just did that, and it still runs, thanks!
I think merging Matt's patch is definitely a good idea for the next release,
letting it run as LocalService by default, and the error message thing is an
improvement over having to run "sc query" every time...
-Bob
More information about the tor-talk
mailing list