[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] r11039: Document new authentication behavior in control-spec.txt (in tor/trunk: . doc/spec)



Author: nickm
Date: 2007-08-02 17:04:00 -0400 (Thu, 02 Aug 2007)
New Revision: 11039

Modified:
   tor/trunk/
   tor/trunk/doc/spec/control-spec.txt
Log:
 r13920@Kushana:  nickm | 2007-08-02 11:00:05 -0700
 Document new authentication behavior in control-spec.txt



Property changes on: tor/trunk
___________________________________________________________________
 svk:merge ticket from /tor/trunk [r13920] on c95137ef-5f19-0410-b913-86e773d04f59

Modified: tor/trunk/doc/spec/control-spec.txt
===================================================================
--- tor/trunk/doc/spec/control-spec.txt	2007-08-02 21:03:40 UTC (rev 11038)
+++ tor/trunk/doc/spec/control-spec.txt	2007-08-02 21:04:00 UTC (rev 11039)
@@ -225,15 +225,19 @@
      "AUTHENTICATE" [ SP 1*HEXDIG / QuotedString ] CRLF
 
   The server responds with "250 OK" on success or "515 Bad authentication" if
-  the authentication cookie is incorrect.
+  the authentication cookie is incorrect.  Tor closes the connection on an
+  authentication failure.
 
   The format of the 'cookie' is implementation-dependent; see 5.1 below for
   information on how the standard Tor implementation handles it.
 
   If Tor requires authentication and the controller has not yet sent an
   AUTHENTICATE message, Tor sends a "514 authentication required" reply to
-  any other kind of message.
+  any other kind of message, and then closes the connection.
 
+  (Versions of Tor before 0.1.2.16 and 0.2.0.4-alpha did not close the
+  connection after an authentication failure.)
+
 3.6. SAVECONF
 
   Sent from the client to the server.  The syntax is: