[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #17603 [Tor]: allow non-interactive --keygen usage (with empty passphrase): --nopass
#17603: allow non-interactive --keygen usage (with empty passphrase): --nopass
-------------------------+---------------------------
Reporter: cypherpunks | Owner:
Type: enhancement | Status: closed
Priority: Medium | Milestone:
Component: Tor | Version:
Severity: Normal | Resolution: not a bug
Keywords: | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------+---------------------------
Changes (by s7r):
* status: reopened => closed
* resolution: => not a bug
Comment:
For the `--nopass` part which I find useful we will stick with #17127 .
For the part that Tor does not automatically renew the medium term signing
key sufficiently valid in the future with the new SigningKeyLifetime value
WITHOUT manually calling `--keygen`, this is expected and wanted behavior.
The automated key renewal will be called by Tor when the medium term
signing key it has is ABOUT to expire and it WANTS (or NEEDS) to generate
a new medium term signing key.
If you want to override existent medium term signing key valid for 30 days
in the future from $now, you CANNOT do it by adding SigningKeyLifetime 2
days in torrc and reload/restart. The new SigningKeyLifetime value will be
used when the existent key is about to expire and Tor wants to generate
new one. You have to do it with the manual `--keygen` instead if you want
immediate replacement.
Closing this for the above stated reasons.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17603#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs