Package: tor Version: 0.3.0.7-1 Severity: normal I see this:
systemd[1]: Starting Anonymizing overlay network for TCP... tor[25760]: May 19 19:42:30.363 [notice] Tor 0.3.0.7 (git-4e55cb9db769b11c) running on Linux with Libevent 2.0.21-stable, OpenSSL 1.1.0e and Zlib 1.2 tor[25760]: May 19 19:42:30.363 [notice] Tor can't help you if you use it wrong! Learn how to be safe at https://www.torproject.org/download/download tor[25760]: May 19 19:42:30.364 [notice] Read configuration file "/usr/share/tor/tor-service-defaults-torrc". tor[25760]: May 19 19:42:30.364 [notice] Read configuration file "/etc/tor/torrc". tor[25760]: Configuration was valid tor[25763]: May 19 19:42:30.557 [notice] Tor 0.3.0.7 (git-4e55cb9db769b11c) running on Linux with Libevent 2.0.21-stable, OpenSSL 1.1.0e and Zlib 1.2 tor[25763]: May 19 19:42:30.557 [notice] Tor can't help you if you use it wrong! Learn how to be safe at https://www.torproject.org/download/download tor[25763]: May 19 19:42:30.557 [notice] Read configuration file "/usr/share/tor/tor-service-defaults-torrc". tor[25763]: May 19 19:42:30.557 [notice] Read configuration file "/etc/tor/torrc". tor[25763]: May 19 19:42:30.560 [warn] Directory /var/lib/tor/hidden_service_onioncat cannot be read: Permission denied tor[25763]: May 19 19:42:30.560 [warn] Checking service directory /var/lib/tor/hidden_service_onioncat failed. tor[25763]: May 19 19:42:30.560 [warn] Failed to parse/validate config: Failed to configure rendezvous options. See logs for details. tor[25763]: May 19 19:42:30.560 [err] Reading config failed--see warnings above. systemd[1]: tor@default.service: Main process exited, code=exited, status=1/FAILURE Adding this line: capability dac_read_search, … to the AppArmor profile fixed this problem. /var/lib/tor/hidden_service_onioncat is only readable by debian-tor; I suspect that Tor might try to access it as root before changing uid. Cheers, -- intrigeri
