Skip to content
GitLab
  • Menu
Projects Groups Snippets
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • Trac Trac
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Issues 246
    • Issues 246
    • List
    • Boards
    • Service Desk
    • Milestones
  • Monitor
    • Monitor
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value stream
  • Wiki
    • Wiki
  • Activity
  • Create a new issue
  • Issue Boards
Collapse sidebar
  • Legacy
  • TracTrac
  • Issues
  • #6264
Closed
Open
Created Jun 30, 2012 by Trac@tracbot

obfsproxy: Add support for dropping privileges and chrooting

[PATCH 1/2] Make obfsproxy drop privileges if requested

Added --user and --group arguments which will make obfsproxy drop privileges
and switch to the given user/group.

The code for droping privileges is shamelessly taken from the Tor project and
adopted to obfsproxy.  The switch_id() function in src/common/compat.c was used.

Signed-off-by: David Sommerseth <dazo@users.sourceforge.net>
---
 configure.ac   |    3 +
 src/external.c |   16 +++++++-
 src/main.c     |  120 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++
 src/managed.c  |   10 +++++
 4 files changed, 147 insertions(+), 2 deletions(-)


[PATCH 2/2] Added support for chrooting obfsproxy

This patch adds --chroot=<dir> which will chroot the process as soon
as possible.

For more info about chrooting, see this URL:
<http://www.unixwiz.net/techtips/chroot-practices.html>

Signed-off-by: David Sommerseth <dazo@users.sourceforge.net>
---
 src/main.c |   27 +++++++++++++++++++++++++--
 1 files changed, 25 insertions(+), 2 deletions(-)

Trac:
Username: dazo

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking