Skip to content
GitLab
  • Menu
Projects Groups Snippets
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • Tor Tor
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 318
    • Issues 318
    • List
    • Boards
    • Service Desk
    • Milestones
  • Merge requests 36
    • Merge requests 36
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Repository
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • The Tor Project
  • Core
  • TorTor
  • Issues
  • #894
Closed
Open
Created Dec 25, 2008 by Trac@tracbot

Tor behaves arrogant (ControlListenAddress)

When I set in torrc:

ControlPort 9051 ControlListenAddress 192.168.14.1:9051

Tor says:

Dec 25 17:57:38.866 [notice] Tor v0.2.0.31 (r16744). This is experimental software. Do not rely on it for strong anonymity. (Running on Linux i686) Dec 25 17:57:38.897 [warn] You have a ControlListenAddress set to accept connections from a non-local address. This means that any program on the internet can reconfigure your Tor. That's so bad that I'm closing your ControlPort for you.

That's wrong.

  1. 192.168.* is not the internet.
  2. I am root. Programs do, what I want. Even if I decide to open a ControlPort on 0.0.0.0, tor has to follow my command. I am the almighty operator. Period. :-)

You could ask, why somebody would set the ControlListenAddress to a local network. The answer is simple: I am running some virtual machines on 192.168.14.*, they only see the host computer as 192.168.14.1 and nothing else. On these machines I want to use trans-proxy-tor, which needs to connect to the control port to work.

I have attached a patch.

Patch: --- src/or/config.c.orig 2008-12-25 18:18:13.000000000 +0100 +++ src/or/config.c 2008-12-25 18:19:39.000000000 +0100 @@ -3216,8 +3216,7 @@ log_warn(LD_CONFIG, "You have a ControlListenAddress set to accept " "connections from a non-local address. This means that " "any program on the internet can reconfigure your Tor. "

  •             "That's so bad that I'm closing your ControlPort for you.");
  •    options->ControlPort = 0;
  •             "That's pretty bad.");
     } else {
       log_warn(LD_CONFIG, "You have a ControlListenAddress set to accept "
                "connections from a non-local address.  This means that "

[Automatically added by flyspray2trac: Operating System: Other Linux]

Trac:
Username: iblue

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking