[Pkg-privacy-maintainers] Bug#1021911: mailto:submit at bugs.debian.org
Toralf Förster
toralf.foerster at gmx.de
Mon Oct 17 10:29:04 BST 2022
Package: obfs4proxy
Version: 0.0.14-1 amd64
Issue: overwriting capabilities
During update the package overwrites an installed /usr/bin/obfs4proxy
without preserving the capabilities, eg. set by
setcap cap_net_bind_service=+ep /usr/bin/obfs4proxy
So a Tor bridge with a port below 1024 emits after restart "obfs4 listen
tcp 0.0.0.0:443: bind: permission denied" to its warn log but continues
without obfuscation.
BTW, shouldn't an upgrade of obfs4proxy restart Tor unconditionally?
--
Toralf
More information about the Pkg-privacy-maintainers
mailing list