Filter TorMonitor access to tor control socket
In Tails, TorMonitor should only have access to a safe subset of Tor control protocol.
To get the conversation between TorMonitor and the Tor daemon: sudo socat -v UNIX-LISTEN:/tmp/tor-control-copy UNIX-CONNECT:/var/run/tor/control
.
Currently TorMonitor uses:
- PROTOCOLINFO
- AUTHCHALLENGE SAFECOOKIE
- AUTHENTICATE
- SETEVENTS
- GETCONF __owningcontrollerprocess
- GETINFO version
- SETEVENTS SIGNAL
- SETEVENTS CONF_CHANGED SIGNAL STREAM CIRC
- GETINFO circuit-status
- GETINFO stream-status
- GETCONF usemicrodescriptors
- GETINFO ip-to-country/*
- GETINFO ns/id/*
Related issues
- Is duplicate of #9001 (closed)
Original created by @alant on 10058 (Redmine)