[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #25890 [Core Tor/Nyx]: add instructions for running nyx safely to the FAQ

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #25890 [Core Tor/Nyx]: add instructions for running nyx safely to the FAQ
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 23 Apr 2018 01:35:20 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 22 Apr 2018 21:35:33 -0400
In-reply-to: <044.0d5b0d32106bd7c9647030dbc1a0c947@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.0d5b0d32106bd7c9647030dbc1a0c947@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#25890: add instructions for running nyx safely to the FAQ
--------------------------+-----------------------------------
 Reporter:  arma          |          Owner:  atagar
     Type:  enhancement   |         Status:  needs_information
 Priority:  Medium        |      Milestone:
Component:  Core Tor/Nyx  |        Version:
 Severity:  Normal        |     Resolution:
 Keywords:                |  Actual Points:
Parent ID:                |         Points:
 Reviewer:                |        Sponsor:
--------------------------+-----------------------------------

Comment (by arma):

 nusenu: right, the tor-relay-debian page did indeed assume you were using
 the deb.

 atagar, the goal here is to provide some concrete advice for all the
 people who were trained by arm in the past to su to debian-tor and run arm
 as the debian-tor user. That was a bad idea (because it gives arm
 permissions to things that it doesn't need). The better idea is to add
 the-user-that-will-run-nyx to the debian-tor group, and then use the fact
 that the controlsocket is reachable by anybody in the group so
 authentication can happen smoothly.

 To be more specific, I suggest the question would be something like "How
 should I connect nyx to my relay on Debian?" and the answer would be
 something like "as the user that will be running nyx, run "sudo adduser
 $USER debian-tor" to add your user to the debian-tor group so it can reach
 Tor's controlsocket. Then log out and log back in (so your user is
 actually in the group), and run nyx. This approach is safer than the one
 where you run nyx as the debian-tor user directly, since in that case
 you'd be giving nyx more access to your Tor private files than it needs."

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25890#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #25890 [Community/Relays]: relay guide lost the instructions for running nyx safely
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #23693 [Core Tor/Tor]: 0.3.1.7: Assertion threadpool failed in cpuworker_queue_work
Next by Author: Re: [tor-bugs] #25908 [Core Tor/Tor]: make test suite coverage more deterministic
Previous by thread: Re: [tor-bugs] #25890 [Core Tor/Nyx]: add instructions for running nyx safely to the FAQ
Next by thread: Re: [tor-bugs] #25890 [Core Tor/Nyx]: add instructions for running nyx safely to the FAQ
Index(es):
- Author
- Thread