This confuses me:
$ telnet localhost 9051
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
authenticate
250 OK
Isn't it supposed to require either auth-cookie or hashed password?
Where is authentication policy described?
Yuri
--
tor-talk mailing list - tor-talk@lists.
Hi Yuri. If you just set a ControlPort in your torrc but not password
or cookie auth then its open. Please see...
https://stem.torproject.org/faq.html#can-i-interact-with-tors-controller-interface-directly
By default tor restricts access to localhost but none the less, having
authentication *or*
