GitLab

This is an attempt to move http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552556 foward.

Right now, ControlPort + CookieAuthFileGroupReadable offers a way for specific users (members of the same group as the Tor process) to controel a system-wide Tor daemon. It would be great to have a similar access control mechanism for ControlSocket.

The attached patch is an attempt to implement such behaviour. It adds a new configuration option, UnixSocketsGroupWritable, which when enabled, will make socket g+rw upon creation.