[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable

Subject: Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 17 May 2015 21:14:15 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 17 May 2015 17:14:22 -0400
In-reply-to: <051.a1f02c3ef1d6c37f184ea98b892fbece@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.a1f02c3ef1d6c37f184ea98b892fbece@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16070: Tor log doesn't have to be world readable
-----------------------------+-----------------
     Reporter:  yurivict271  |      Owner:
         Type:  defect       |     Status:  new
     Priority:  normal       |  Milestone:
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+-----------------

Comment (by yurivict271):

 These are some recommended practices and reasoning.

 But is there the documentation on how the third party apps should access
 tor for administration purposes? The above bug report says that group
 debian-tor is required. Is this formally described anywhere that the
 other, distinct group is required, which files should have which groups?
 Without such documentation other distros will improvise and do whatever
 they feel they need to fill in the blanks. (even under Debian brand, many,
 like Mint for ex., build their own modified packages.)

 On FreeBSD, for ex., arm package doesn't create any other group. I don't
 know what does it do for access. Probably only works as root.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16070#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #16070 [- Select a component]: Tor log doesn't have to be world readable
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16071 [general]: Some sites fight anonimity. It's time to respond.
Next by Author: [tor-bugs] #16072 [Service - trac]: Stop using reCaptcha on all your services
Previous by thread: Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable
Next by thread: Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable
Index(es):
- Author
- Thread