nusenu <nus...@openmailbox.org> writes: >>> CapabilityBoundingSet: >>> >>> Since you add CAP_FOWNER (compared to upstream): What use cases >>> require it? >> >> CAP_FOWNER is required by "ControlSocket /var/run/tor/control". >> Tor chowns the control socket on startup (and fails to start if >> this does not succeed). > > I was able to use ControlSocket without CAP_FOWNER. > Adding CAP_DAC_OVERRIDE and CAP_CHOWN was enough in my case. > > See also: > https://lists.torproject.org/pipermail/tor-dev/2015-April/008638.html > > What tor version did you test with?
With 0.2.6.7. Did you test both cases where /var/run/tor exists and doesn't exist? -- Arto Jantunen -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org