[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #3501 [Tor Client]: Teach Tor to run the Control Port over TLS

To: undisclosed-recipients:;
Subject: [tor-bugs] #3501 [Tor Client]: Teach Tor to run the Control Port over TLS
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Wed, 29 Jun 2011 14:20:22 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 29 Jun 2011 10:20:33 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bugs reporting list for trac <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#3501: Teach Tor to run the Control Port over TLS
------------------------+---------------------------------------------------
 Reporter:  ioerror     |          Owner:     
     Type:  task        |         Status:  new
 Priority:  normal      |      Milestone:     
Component:  Tor Client  |        Version:     
 Keywords:  torouter    |         Parent:     
   Points:              |   Actualpoints:     
------------------------+---------------------------------------------------
 I've been discussing how we can use Vidalia with chiiph as a Tor
 controller over a network - this would be useful for the Torouter for
 example.

 I think that a TOFU (Trust On First Use) model is probably best and that
 would mean we'd simply need a Tor Control Port that uses a static TLS
 cert/key combo. I guess we could do a bare key or we could do the full
 x509 nightmare. I don't really have a preference.

 This would allow us to control Tor safely as the control port data
 exported by Vidalia doesn't seem safe to expose to an attacker.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3501>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #3501 [Tor Client]: Teach Tor to run the Control Port over TLS
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #3501 [Tor Client]: Teach Tor to run the Control Port over TLS
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #3500 [- Select a component]: what is difference between hotmail messenger and pidgen
Next by Author: [tor-bugs] #3502 [Vidalia]: Teach Vidalia to connect to a Control Port over TLS
Previous by thread: Re: [tor-bugs] #3500 [- Select a component]: what is difference between hotmail messenger and pidgen
Next by thread: Re: [tor-bugs] #3501 [Tor Client]: Teach Tor to run the Control Port over TLS
Index(es):
- Author
- Thread