Bug 1296226

Summary: Insufficient rights to controller cookie file
Product: [Fedora] Fedora Reporter: vvs <vvs009>
Component: torAssignee: Nobody's working on this, feel free to take it <nobody>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 23CC: lmacken, pwouters, s
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: tor-0.2.7.6-5.fc23 tor-0.2.7.6-5.fc22 tor-0.2.7.6-5.el7 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-01-17 17:52:26 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description vvs 2016-01-06 16:10:56 UTC 
Description of problem:

The controller cookie file has file mode that restricts toranon group members from reading its content. This prevents any application from controlling tor instance.

Version-Release number of selected component (if applicable):

tor-0.2.7.6-4.fc23.i686

How reproducible:

Always

Steps to Reproduce:
1. systemctl start tor
2. ls -ld /run/tor
3. ls -l /run/tor/control.authcookie

Actual results:

There is no access for group toranon

Expected results:

It should have the read right for reading cookie file by members of that group.

Additional info:
Comment 1 Jamie Nguyen 2016-01-07 11:09:57 UTC 
Thanks for reporting! Builds in progress. Updates to follow.
Comment 2 Fedora Update System 2016-01-07 11:43:23 UTC 
tor-0.2.7.6-5.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-bbef6a3a1a
Comment 3 Fedora Update System 2016-01-07 11:43:34 UTC 
tor-0.2.7.6-5.fc22 has been submitted as an update to Fedora 22. https://bodhi.fedoraproject.org/updates/FEDORA-2016-dc3219a8a0
Comment 4 Fedora Update System 2016-01-07 11:43:47 UTC 
tor-0.2.7.6-5.el7 has been submitted as an update to Fedora EPEL 7. https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-7e52cbc8ae
Comment 5 Fedora Update System 2016-01-08 21:24:05 UTC 
tor-0.2.7.6-5.el7 has been pushed to the Fedora EPEL 7 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-7e52cbc8ae
Comment 6 Fedora Update System 2016-01-09 04:26:01 UTC 
tor-0.2.7.6-5.fc22 has been pushed to the Fedora 22 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-dc3219a8a0
Comment 7 Fedora Update System 2016-01-09 04:28:33 UTC 
tor-0.2.7.6-5.fc23 has been pushed to the Fedora 23 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-bbef6a3a1a
Comment 8 Fedora Update System 2016-01-17 17:52:23 UTC 
tor-0.2.7.6-5.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.
Comment 9 Fedora Update System 2016-01-17 18:51:42 UTC 
tor-0.2.7.6-5.fc22 has been pushed to the Fedora 22 stable repository. If problems still persist, please make note of it in this bug report.
Comment 10 Fedora Update System 2016-01-24 01:05:46 UTC 
tor-0.2.7.6-5.el7 has been pushed to the Fedora EPEL 7 stable repository. If problems still persist, please make note of it in this bug report.