[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #12555 [Tor]: Socks5 password authentication not working

Subject: Re: [tor-bugs] #12555 [Tor]: Socks5 password authentication not working
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 19 Oct 2014 04:07:15 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 19 Oct 2014 00:07:25 -0400
In-reply-to: <049.8706bf28c9ef043fc2a291d5cb2d5f9e@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.8706bf28c9ef043fc2a291d5cb2d5f9e@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#12555: Socks5 password authentication not working
---------------------------+-------------------------------
     Reporter:  starlight  |      Owner:
         Type:  defect     |     Status:  needs_information
     Priority:  normal     |  Milestone:  Tor: unspecified
    Component:  Tor        |    Version:  Tor: 0.2.4.22
   Resolution:             |   Keywords:
Actual Points:             |  Parent ID:
       Points:             |
---------------------------+-------------------------------

Comment (by starlight):

 I looked again and my idea seems correct, per

 https://bugzilla.mozilla.org/show_bug.cgi?id=122752

 the config variables set the SOCKS5 user/pass
 which is, I believe, the same proxy pathway
 used by FF to connect to the Tor relay daemon.
 I recall using Wireshark to observe it functioning
 though I can't muster enough enthusiasm to
 re-check it now.

 But I don't see it as a big deal especially
 if it's much work to implement.  Using a
 torrc "SocksPolicy accept" line here to limit
 access to just the systems that need access
 and using an alias network to keep the
 Tor client VMs somewhat isolated from
 other systems.

 If one is running a separate Tor relay
 and client and is seriously concerned about
 local network security, one should configure
 IPSEC authentication and encryption for
 the SOCKS connection.

 Sorry slow on the reply--forgot to put an
 email address in my account profile.  This
 issue can be closed.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12555#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #13338 [Tor]: Rewrite tor-fw-helper in Go (or another memory-safe language)
Next by Author: [tor-bugs] #13472 [Tor Browser]: Tor Browser 4.0 not able to talk with tor
Previous by thread: Re: [tor-bugs] #13471 [Tor]: router daemon crashes with openssl built no_ssl3
Next by thread: Re: [tor-bugs] #12555 [Tor]: Socks5 password authentication not working
Index(es):
- Author
- Thread