control_auth_cookie isn't deleted when tor stops
When tor is stopped gracefully ('service stop tor' on FreeBSD), it leaves the file /var/db/tor/control_auth_cookie.
Due to the sensitive nature of this file, it should be only present when tor runs and deleted once it stops gracefully.
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information