[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #3958 [Torctl]: pytorctl should learn to try both CookieAuth and PasswordAuth

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #3958 [Torctl]: pytorctl should learn to try both CookieAuth and PasswordAuth
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Thu, 08 Sep 2011 00:09:58 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 07 Sep 2011 20:10:30 -0400
In-reply-to: <044.aed36bca3208e78636a5a0dc885ed82f@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.aed36bca3208e78636a5a0dc885ed82f@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#3958: pytorctl should learn to try both CookieAuth and PasswordAuth
--------------------+-------------------------------------------------------
 Reporter:  arma    |          Owner:  atagar  
     Type:  defect  |         Status:  assigned
 Priority:  normal  |      Milestone:          
Component:  Torctl  |        Version:          
 Keywords:          |         Parent:          
   Points:          |   Actualpoints:          
--------------------+-------------------------------------------------------

Comment(by rransom):

 Replying to [comment:1 atagar]:
 > Not quite. TorCtl tries the *first* authentication type present in the
 'METHODS=' entry. Iirc this is COOKIE if both are offered so it'll have
 the same issue that's discussed in 3898.
 >
 > When both are offered we should:
 > 1. try the password if we already have it at that point in execution
 (ie, it's an arg to connect)
 > 2. attempt to read the cookie file and use that
 > 3. prompt the user for a password
 >
 > This attempts in order of relative attempt speed, prompting the user as
 a last resort.

 How can we ensure that bandwidth authorities, exit scanners, and other
 unattended processes that use PyTorCtl never try to 'prompt the user for a
 password'?  (That would cause Nagios scripts to think that the process is
 running, even if it's doing nothing.)

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3958#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #3958 [Torctl]: pytorctl should learn to try both CookieAuth and PasswordAuth
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #3958 [Torctl]: pytorctl should learn to try both CookieAuth and PasswordAuth
Next by Author: Re: [tor-bugs] #3630 [Tor Relay]: Reduce token bucket refill interval
Previous by thread: Re: [tor-bugs] #3958 [Torctl]: pytorctl should learn to try both CookieAuth and PasswordAuth
Next by thread: Re: [tor-bugs] #3958 [Torctl]: pytorctl should learn to try both CookieAuth and PasswordAuth
Index(es):
- Author
- Thread