[tor-bugs] #15220 [Tor]: Allow SocksSockets writable by arbitrary user
Tor Bug Tracker & Wiki
blackhole at torproject.org
Tue Mar 10 21:13:15 UTC 2015
#15220: Allow SocksSockets writable by arbitrary user
-----------------------------+-----------------
Reporter: sysrqb | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone:
Component: Tor | Version:
Resolution: | Keywords:
Actual Points: | Parent ID:
Points: |
-----------------------------+-----------------
Changes (by sysrqb):
* cc: ioerror, andrea, dgoulet, yawning, nickm (added)
Comment:
This issue doesn't affect the Tor Browser use-case, or the situation where
the user is a member of the tor group (or is the tor user), but in most
other cases this is a serious usability problem. So, do we leave this
(mostly) useless in 0.2.6 and fix this in 0.2.7? Or, do we tweak the
implementation and make it usable in 0.2.6 and then finish fixing it in
0.2.7?
In this specific case, I dont seem the harm of defaulting the unix socket
to 0666, the INET SocksPort is no different (unless restricted by a
firewall or somesuch). This also negates the use of
SocksSocketsGroupWritable. But now that we're in the freeze, it seems too
late for us to start changing config option behavior. Thoughts?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15220#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list