[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18787 [Tor Browser]: Initialize the SOCKS password to random offset at start

Subject: Re: [tor-bugs] #18787 [Tor Browser]: Initialize the SOCKS password to random offset at start
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 12 Apr 2016 01:53:45 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 11 Apr 2016 21:53:55 -0400
In-reply-to: <051.c0fd2b56f81487779f414b4e6b8edbbd@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.c0fd2b56f81487779f414b4e6b8edbbd@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18787: Initialize the SOCKS password to random offset at start
-------------------------+--------------------------
 Reporter:  cypherpunks  |          Owner:  tbb-team
     Type:  enhancement  |         Status:  new
 Priority:  Medium       |      Milestone:
Component:  Tor Browser  |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
 Reviewer:               |        Sponsor:
-------------------------+--------------------------

Comment (by cypherpunks):

 Replying to [comment:4 yawning]:
 > The default behavior is "if Tor Browser restarts, so does tor", since
 Tor Browser is responsible for spawning and launching the tor instance.  I
 filed #18125 with the same sort of thinking a while ago for addressing
 some of the more exotic situations.


 Wouldn't that require ControlPort access? A lot of people have that
 disabled when TOR_SKIP_LAUNCH is set so NEWNYM will never be received. It
 seems like something like this where the password is randomized would be
 better (maybe it should only be randomized if TOR_SKIP_LAUNCH is set).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18787#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #18787 [Tor Browser]: Initialize the SOCKS password to random offset at start
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #18782 [Tor Browser]: media tab in Page Info can bypass NoScript
Next by Author: Re: [tor-bugs] #18787 [Tor Browser]: Initialize the SOCKS password to random offset at start
Previous by thread: Re: [tor-bugs] #18787 [Tor Browser]: Initialize the SOCKS password to random offset at start
Next by thread: Re: [tor-bugs] #18787 [Tor Browser]: Initialize the SOCKS password to random offset at start
Index(es):
- Author
- Thread