[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

bad security setting for win32 tor service



Hello,

the default install of win32 tor service is bad.
tor -install create the service that it runs with SYSTEM-privileges
(highest possible privilege level on win32 (more than administrator))
Nobody would run tor daemon on *nix with root-privileges.

short document about Service account permissions:
http://www.microsoft.com/resources/documentation/WindowsServ/2003/datacenter/proddocs/en-us/sys_srv_permissions.asp

Tor works fine as user LocalService.

tor.exe didn't find:
C:\Documents and Settings\LocalService\Application Data\Tor\torrc
but
c:\Program Files\Tor\torrc
worked

I defined the log directory in torrc this way:
Log notice file C:\Documents and Settings\LocalService\Application Data\Tor\notices.log
and changed the account for the service:
-----------------------------tor_service.reg-----------------------------------
Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\tor]
"ObjectName"="NT AUTHORITY\\LocalService"
-----------------------------tor_service.reg-----------------------------------

(0. "tor -install" if tor is not installed)
1. run "regedit /s tor_service.reg" to merge this regfile silent
2. stop tor-service "sc stop tor"
3. start tor-service again "sc start tor" and it runs within the localservice account

greetings
Carsten