[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Debian relay Puppet module

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Debian relay Puppet module
From: Alexander Fortin <alexander.fortin@xxxxxxxxx>
Date: Thu, 19 Jun 2014 08:06:12 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 19 Jun 2014 02:06:23 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=3nBGQm2FyoRRT1mSK0F1BdSC/Z41jtc63bpdI8NTmW0=; b=xTzDNRy5+83u+9PSTYvo+SWhPJ3bxD0ixT2MRaFynoO5c4VI5N42kodbDlNOLMXl6y +L+wVDMdqhxo+96Xo6zXNKn2OFCbXeCdY03AubI27vQoqFBaD99f2AiTvSnWCvuqyFdv FEh41uc9qa2pt+djQFmkrE4CJnCx3IwzVJocqrAv/8U9NT9qd7hId0G0ZfHLjycu7Iku XlFU2eOe5hjgdmPvOn5yWEnoPjkx/oLQLUOc1jVyICp0DStsYi1dFCuT1WEW1BtnNf4/ Yv6Gi4r/hcT66O2ECej9vL/Y69fXRjNcqtvPwAN0gg64mNSbIPOE3kPI6nA6rwB+Gr3Y HYog==
In-reply-to: <CAKCAbMgDJZMe99znbvjTUYTvLyha7ngbXwRN+5C4R1TvOCbw2A@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <etPan.539d842b.643c9869.181@xxxxxxxxxxxxx> <CAKCAbMhwiAEuALOB2wcCZSvd9R8voQo-rwWnjWTTP3Z=waBf-A@xxxxxxxxxxxxxx> <etPan.53a13947.66334873.30c9@xxxxxxxxxxxxx> <CAKCAbMjyzgY_0ew0gkjxQhV_NoMrX8x=wPP6MmU5KrhSFNBYjw@xxxxxxxxxxxxxx> <etPan.53a1d124.6b8b4567.180@xxxxxxxxxxxxx> <CAKCAbMgDJZMe99znbvjTUYTvLyha7ngbXwRN+5C4R1TvOCbw2A@xxxxxxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

On Wed, Jun 18, 2014 at 9:34 PM, Zack Weinberg <zackw@xxxxxxx> wrote:
> If the process listening on port 80 is the Tor process, then any
> vulnerability in the HTTP service it presents to port 80 can be
> exploited for a direct attack on the relay itself.  If port 80 service
> is provided by a separate program (e.g. lighttpd) running under a
> different user ID, then an exploit of *that* program may not be able
> to affect the relay.  That's all I meant.  (The Wikipedia article is
> talking about a related thing, but not really the same.)

Yes, clear now, thanks for the explanation.

-- 
http://about.me/alexanderfortin
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Debian relay Puppet module
  - From: Alexander Fortin
- Re: [tor-relays] Debian relay Puppet module
  - From: Zack Weinberg
- Re: [tor-relays] Debian relay Puppet module
  - From: Alexander Fortin
- Re: [tor-relays] Debian relay Puppet module
  - From: Zack Weinberg
- Re: [tor-relays] Debian relay Puppet module
  - From: Alexander Fortin
- Re: [tor-relays] Debian relay Puppet module
  - From: Zack Weinberg

Prev by Author: Re: [tor-relays] Debian relay Puppet module
Next by Author: Re: [tor-relays] Shutting down middle relays (off-topic)
Previous by thread: Re: [tor-relays] Debian relay Puppet module
Next by thread: Re: [tor-relays] Debian relay Puppet module
Index(es):
- Author
- Thread