[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there

Subject: Re: [tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 10 Apr 2015 11:35:38 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 10 Apr 2015 07:35:48 -0400
In-reply-to: <051.cbc99f120c86f30d0ae7d9ac7496e560@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.cbc99f120c86f30d0ae7d9ac7496e560@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#15649: [feature suggestion] Tor control protocol should listen on privileged UNIX
domain socket and allow an unauthenticated administration there
-----------------------------+-----------------
     Reporter:  yurivict271  |      Owner:
         Type:  enhancement  |     Status:  new
     Priority:  normal       |  Milestone:
    Component:  general      |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+-----------------

Comment (by yurivict271):

 In case there are many instances this is easily solved by factoring in
 their pid in the ctl socket name.

 Package manager/user can't solve this problem. They run 'pkg install tor
 my-service && service tor start && service my-service start'. Where does
 the user or package manager come into play? This boils down to either
 changing the default for CookieAuthentication, or the need of the direct
 user involvement: change this file, add this line here, and that line
 there. It quickly becomes the rocket science when it doesn't have to be.
 Superuser ctl socket elegantly solves this problem. Xorg also typically
 keeps such socket, this is a common practice to operate through the UNIX
 sockets.

 Tor opens local socket at 127.0.0.1:9100 by default. This should have been
 UNIX socket to begin with, because that would have been the most natural
 choice. Why choose local net when UNIX socket is obviously more functional
 for this. UNIX socket actually supports authentication credentials too,
 among other potentially useful things.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15649#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #15652 [Tor]: Base64 code cleanups.
Next by Author: Re: [tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there
Previous by thread: Re: [tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there
Next by thread: Re: [tor-bugs] #15649 [general]: [feature suggestion] Tor control protocol should listen on privileged UNIX domain socket and allow an unauthenticated administration there
Index(es):
- Author
- Thread