[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Lock Control Port

To: or-dev@xxxxxxxxxxxxx
Subject: Re: Lock Control Port
From: Roger Dingledine <arma@xxxxxxx>
Date: Sat, 13 Oct 2007 16:27:01 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-dev-outgoing@xxxxxxxx
Delivered-to: or-dev@xxxxxxxx
Delivery-date: Sat, 13 Oct 2007 16:27:08 -0400
In-reply-to: <200710131050.21896.robert@xxxxxxxxxxxxxxx>
References: <200710131050.21896.robert@xxxxxxxxxxxxxxx>
Reply-to: or-dev@xxxxxxxxxxxxx
Sender: owner-or-dev@xxxxxxxxxxxxx
User-agent: Mutt/1.5.13 (2006-08-11)

On Sat, Oct 13, 2007 at 10:50:16AM +0100, Robert Hogan wrote:
> While we're all still 'getting there', controllers could have the option of 
> locking the control port if no auth mechanism is enabled, and even when it 
> is. Given that users tend not to share installations and most run their 
> controller concurrently with tor at all times this would be a useful fallback 
> measure.

Why not have your controller enable authentication when it connects and
doesn't like what it finds? If you want, you can then disable it when
you disconnect.

This approach would seem to have all the same properties of your
lock/unlock without any new commands or code.

--Roger

Follow-Ups:
- Re: Lock Control Port
  - From: Robert Hogan

References:
- Lock Control Port
  - From: Robert Hogan

Prev by Author: Re: Proposal: Network status entries need a new Unnamed flag
Next by Author: Re: Comments on Proposal 105 -- handshake-revision
Previous by thread: Lock Control Port
Next by thread: Re: Lock Control Port
Index(es):
- Author
- Thread