Skip to content
GitLab
Projects Groups Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • Tor Tor
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 325
    • Issues 325
    • List
    • Boards
    • Service Desk
    • Milestones
  • Merge requests 30
    • Merge requests 30
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Repository
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • The Tor Project
  • Core
  • TorTor
  • Issues
  • #40338
Closed
Open
Issue created Mar 16, 2021 by opara@opara🎄Contributor

Don't exit if a service directory has non-private permissions when using TestingTorNetwork

When running tor with TestingTorNetwork enabled, don't exit if the hs directory has other/world permissions set.

For Tor experiments with configurations that are tracked in git, it is a bit of a pain to fix up ownership of the configuration files before running tor. To work around this, Shadow puts all of the files in an archive to preserve permissions and commits the archive to git, but it would be nice to be able to commit the configuration files to git directly and track changes properly.

In almost all cases where the permissions are incorrect, tor will automatically fix them and continue running, but the only exception to this that I can find is the hidden service directory.

As the TestingTorNetwork is explicitly about running a testing Tor network, I don't see any security implications of disabling the permissions check when this option is enabled.

(PR incoming...)

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking