[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable

Subject: Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 17 May 2015 23:43:19 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 17 May 2015 19:43:27 -0400
In-reply-to: <051.a1f02c3ef1d6c37f184ea98b892fbece@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.a1f02c3ef1d6c37f184ea98b892fbece@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#16070: Tor log doesn't have to be world readable
-----------------------------+-----------------
     Reporter:  yurivict271  |      Owner:
         Type:  defect       |     Status:  new
     Priority:  normal       |  Milestone:
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+-----------------

Comment (by atagar):

 > But nothing should really be world readable.

 *shrug*. If that's your view then you're welcome to impose whatever you'd
 like on your system. When it comes to defaults that policy is debatable.

 > So if I run nyx with some regular user, it will fail. There should be
 the policy and documentation on which users can connect, and what groups
 and permissions are needed.

 Ah, so you're using a ControlSocket rather than a ControlPort, and
 restricting it to just the tor user? If that's how your platform is set up
 then indeed, guess someone painted you into a corner so third party apps
 gotta run as the tor user.

 > Also /proc is the linux artifact, not a good idea to use it and rely on
 it in general.

 Yes, it's a linux artifact. To get resource usage and connection
 information Nyx uses /proc if it's available (since it's the most
 performant), then falls back to shelling out to things like lsof, netstat,
 and friends. If none of that works then the user simply doesn't get the
 information we were trying to retrieve.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/16070#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #16070 [- Select a component]: Tor log doesn't have to be world readable
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable
Next by Author: Re: [tor-bugs] #16043 [operations]: Decision on $5k for Tor messenger dev meeting in June
Previous by thread: Re: [tor-bugs] #16070 [Tor]: Tor log doesn't have to be world readable
Next by thread: [tor-bugs] #16071 [general]: Some sites fight anonimity. It's time to respond.
Index(es):
- Author
- Thread