[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #15588 [Tor]: Allow client authorization on control port ADD_ONION services

Subject: Re: [tor-bugs] #15588 [Tor]: Allow client authorization on control port ADD_ONION services
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 14 Jul 2015 04:22:03 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 14 Jul 2015 00:22:44 -0400
In-reply-to: <047.5563433cc96eb99ffbfea15b74b07988@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.5563433cc96eb99ffbfea15b74b07988@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#15588: Allow client authorization on control port ADD_ONION services
-----------------------------+-------------------------------------------
     Reporter:  special      |      Owner:  special
         Type:  enhancement  |     Status:  needs_review
     Priority:  normal       |  Milestone:  Tor: 0.2.7.x-final
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:  hidden-service control tor-hs
Actual Points:               |  Parent ID:  #8993
       Points:               |
-----------------------------+-------------------------------------------
Changes (by special):

 * status:  new => needs_review


Old description:

> We should extend the control port ADD_ONION command from #6411 to support
> HS client authorization. This would be useful to Ricochet, and probably
> other projects.
>
> It's also more important to allow changing an existing service when we
> might want to add or remove authorized clients, so an UPDATE_ONION
> command would be useful and probably not difficult.
>
> I'd like to see this done before 0.2.7 is final, so I'm going to look
> into it. I've started on the specification at:
>
> https://github.com/special/torspec/compare/feature6411_v2...onion-client-
> auth

New description:

 We should extend the control port ADD_ONION command from #6411 to support
 HS client authorization. This would be useful to Ricochet, and probably
 other projects.

 It's also more important to allow changing an existing service when we
 might want to add or remove authorized clients, so an UPDATE_ONION command
 would be useful and probably not difficult.

 I'd like to see this done before 0.2.7 is final, so I'm going to look into
 it.

--

Comment:

 A specification and implementation for this are on my feature15588
 branches of torspec and tor:

 https://gitweb.torproject.org/user/special/torspec.git/log/?h=feature15588
 https://gitweb.torproject.org/user/special/tor.git/log/?h=feature15588

 This currently only implements the "basic" authorization method. "stealth"
 is slightly more complex, because it has a credential that is private to
 the service and one that is shared with the client.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15588#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #6977 [EFF-HTTPS Everywhere]: [CHROME] add a power-user setting to re-enable mixedcontent rulesets
Next by Author: Re: [tor-bugs] #16575 [Website]: Add chutney and exitmap as projects on the volunteer page
Previous by thread: Re: [tor-bugs] #6977 [EFF-HTTPS Everywhere]: [CHROME] add a power-user setting to re-enable mixedcontent rulesets
Next by thread: Re: [tor-bugs] #98 [Tor]: WSAENOBUFS: Running out of buffer space on Windows
Index(es):
- Author
- Thread