[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #23963 [Applications/Tor Browser]: Tor Browser can use a Tor that's running under another user

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #23963 [Applications/Tor Browser]: Tor Browser can use a Tor that's running under another user
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 26 Oct 2017 13:49:52 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 26 Oct 2017 09:50:05 -0400
In-reply-to: <044.c96f233137f04edbb147c9a25c4f795c@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.c96f233137f04edbb147c9a25c4f795c@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#23963: Tor Browser can use a Tor that's running under another user
--------------------------------------+--------------------------
 Reporter:  teor                      |          Owner:  tbb-team
     Type:  defect                    |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:                            |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:
--------------------------------------+--------------------------

Comment (by yawning):

 Replying to [comment:2 mcs]:
 > I do not know of a way to ensure that the SOCKSPort is "trusted" except
 to switch to Unix domain sockets (which is possible via hidden prefs
 inside Tor Browser).

 Beyond what's done now (Query `net/listeners/socks` over the command
 port), probably not much without patching tor.

 > I am also not sure how Tor Browser can tell the difference between "I am
 using a system Tor which is what the user wants" and "I am using a
 leftover Tor that was possibly started by another user."

 Getting Tor Browser to use a system tor requires a bunch of env vars to be
 set to suppress launching the tor instance.

 > I think the argument will be "If Tor Browser is configured to start tor,
 it should only use the tor that it starts" (which seems reasonable but may
 be difficult to implement).

 `SO_PASSCRED` and `SCM_CREDENTIALS` makes this trivial on sensible
 systems.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23963#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #23963 [Applications/Tor Browser]: Tor Browser can use a Tor that's running under another user
  - From: Tor Bug Tracker & Wiki