[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #11376 [Tor]: Provide Privileged and Unprivileged control ports

Subject: [tor-bugs] #11376 [Tor]: Provide Privileged and Unprivileged control ports
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 31 Mar 2014 00:03:22 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 30 Mar 2014 20:03:48 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#11376: Provide Privileged and Unprivileged control ports
-------------------------+------------------------------
 Reporter:  sysrqb       |          Owner:
     Type:  enhancement  |         Status:  new
 Priority:  normal       |      Milestone:  Tor: 0.2.???
Component:  Tor          |        Version:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
-------------------------+------------------------------
 (This may be a duplicateas I know this has been discussed before, but I
 couldn't find the original if it exists)

 The control port has the potential ability to pass sensitive information
 (#3521, #5976, #1949). There may be situations where one controller only
 needs the ability to query and receive a limited amount of information and
 another controller handles the sensitive information. These two processes
 should be able to connect/authenticate to different sockets and and thus
 prevent the first process from receiving sensitive information.

 Alternatively, this same isolation can be achieved using the chosen
 authentication mechanism.

 Whichever is better (or if both, or another, are chosen), the capabilities
 of the connection should also be configurable via torrc and control port.
 For example, whether a connection is allowed to SETCONF or only GETCONF
 and SETEVENTS, etc. A high level of granularity would be ideal.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11376>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #11376 [Tor]: Provide Privileged and Unprivileged control ports
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #11376 [Tor]: Provide Privileged and Unprivileged control ports
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #11090 [Torsocks]: torsocks should log errors to stderr and not stdout
Next by Author: Re: [tor-bugs] #11376 [Tor]: Provide Privileged and Unprivileged control ports
Previous by thread: [tor-bugs] #11375 [EFF-HTTPS Everywhere]: tucows fails to load with HTTPS-E
Next by thread: Re: [tor-bugs] #11376 [Tor]: Provide Privileged and Unprivileged control ports
Index(es):
- Author
- Thread