[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).

To: Mark Smith <mcs@xxxxxxxxxxxxxxxxx>
Subject: Re: [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).
From: George Kadianakis <desnacked@xxxxxxxxxx>
Date: Mon, 06 May 2019 20:04:51 +0300
Cc: tor-dev@xxxxxxxxxxxxxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 06 May 2019 13:05:09 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1557162295; bh=Ftz44kLlT5DgeoC7DsanoDtKIDJ/Vq5f9U2r5VkN/Rg=; h=From:To:Cc:Subject:In-Reply-To:References:Date:From; b=Z9pgXj4U3WayqlznxrTvsPLUfWM0yOXyfsQduXHJieRhVW5pHTALNBoEBWjtJieyu uOWp+k2czU+QUGq+LD4jMUGVijEY3si4PyV/G3ZYIoaogPFQeVX9CaxtPTYwVfEfda +F0prIGcEfU5T8pSmSIi1TXFuPN38eJr/GQSs8AY=
In-reply-to: <ee4b3f3c-0343-b71d-411e-b68fbccbdecb@pearlcrescent.com>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <87h8a7fw4h.fsf@riseup.net> <ee4b3f3c-0343-b71d-411e-b68fbccbdecb@pearlcrescent.com>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

Mark Smith <mcs@xxxxxxxxxxxxxxxxx> writes:

> On 5/6/19 11:19 AM, George Kadianakis wrote:
>> Hello list,
>> 
>> here is a control spec patch for adding v3 client auth commands to
>> add/remove/view clients from the client-side (so Tor Browser -> Tor):
>>                 https://github.com/torproject/torspec/pull/81/commits/3a26880e80617210b4729f96664ef9f0345b0b7c
>> 
>> I'm currently unhappy with the naming of those commands, and in general
>> with how easy it is to confuse them with the (non-existent) service-side
>> commands. I'm wondering how to name them better so that when we add the
>> respective service-side commands (at some point we should) there is no
>> confusion.
>> 
>> Let me know what you think!
>
> Thanks for working on this.  I have a couple of comments:
>
> 1. How does Permanent get set?  Should there by an option added to
> ADD_ONION_CLIENT_AUTH to let the client say "store this on disk"?
>

Yes we do want that! We just thought it adds to engineering complexity and
it shouldn't get in as part of the first implementation (i.e. as an s27-must).

I will still add it to the spec, and just not implement it.

> 2. For VIEW_ONION_CLIENT_AUTH it would be nice if the HSAddress
> parameter was optional.  We may want to build an interface that allows
> users to see all of their keys and choose which ones to remove, etc.
>

Good point! Will do.

Will probs have a revision for this list tomorrow!
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).
  - From: George Kadianakis
- Re: [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).
  - From: Mark Smith

Prev by Author: Re: [tor-dev] Proposal 302: Hiding onion service clients using WTF-PAD
Next by Author: [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).
Previous by thread: Re: [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).
Next by thread: Re: [tor-dev] [RFC] control-spec: Specify add/remove/view client auth commands (client-side).
Index(es):
- Author
- Thread