[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] tor v0.2.5.x hits 'stable' repos / ControlPort auth behaviour change?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] tor v0.2.5.x hits 'stable' repos / ControlPort auth behaviour change?
From: Ondrej Mikle <ondrej.mikle@xxxxxxxxx>
Date: Fri, 24 Oct 2014 22:36:20 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 24 Oct 2014 16:36:38 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=mzAV4arsYUnCJYWlOLImCJs99C1wOdLVxS13DO8OPgs=; b=i4UF2aS4g4IML6FP27Uw/YBLkwccTh/9UjO0urow3/J4PlgoBqxp5JndzzLpuxXsMs 9vCTcSozFA0SJGLe3kWvvAh+nxXLmyOWqqWIKKRqwfj5LBERDyFL3msyWJY6j6lGaYl3 yTk75HUkR8a3vVnSs/6xMp53U5G/G2hYQIAM+bhzcEccUse6Xp+HvZGvAOX2YdOsdHCA GwDr+wx5y2HGklZQcP1bQbb8ZbK8psApF1dmjst2NQxegnP3MJh0qYXgr0mVbh7YkNY/ bOXDR9gAqHRcUFDElQAoXvOcTZumo6yowqeW25jtZaL8kqV12YcjgYoeteWc/fsR9Lwp VKpQ==
In-reply-to: <54496897.1090600@xxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <54496897.1090600@xxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0

On 10/23/2014 10:44 PM, Nusenu wrote:
> I use vidalia to connect to a system tor (via HashedControlPassword
> authentication).
> 
> Regarding the control port I had the following two lines in my torrc:
> 
> ControlPort 9051
> HashedControlPassword xxxxxxxxx
> 
> after the upgrade to tor 0.2.5.9-rc vidalia was unable to connect and
> complained that tor asked for the authentication cookie - even though I
> did not set CookieAuthentication. Only after explicitly setting
> CookieAuthentication to 0 (which is the default anyway) vidalia was able
> to connect using the password auth again.
> 
> Can anyone confirm this?

The 0.2.5.x rpm package switched over to defaults-torrc for default settings
(instead of having them hardcoded on command line). CookieAuthentication was
turned on in 0.2.5.9 package in the defaults-torrc, apparently setting
HashedControlPassword in torrc did not override CookieAuthentication from
defaults-torrc.

It's fixed now in 0.2.5.10 rpm package that's just been uploaded into the repo.
CookieAuthenthication is back to default. Thanks for catching that.

Ondrej
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] tor v0.2.5.x hits 'stable' repos / ControlPort auth behaviour change?
  - From: Nusenu

Prev by Author: Re: [tor-talk] Facebook brute forcing hidden services
Next by Author: Re: [tor-talk] Secure hosting
Previous by thread: [tor-talk] tor v0.2.5.x hits 'stable' repos / ControlPort auth behaviour change?
Next by thread: [tor-talk] Tor-ramdisk 20141022 released
Index(es):
- Author
- Thread