tor/changes/bug12585

  o Major features (security)
    - Implementation of SocksSocket option - SocksSocket implements a SOCKS
      proxy reachable by Unix Domain Socket. This allows client applications to
      communicate with Tor without having the ability to create AF_INET or
      AF_INET6 family sockets. If an application has permission to create a socket
      with AF_UNIX, it may directly communicate with Tor as if it were an other
      SOCKS proxy. This should allow high risk applications to be entirely prevented
      from connecting directly with TCP/IP, they will be able to only connect to the
      internet through AF_UNIX and only through Tor.
Commit second draft of Jake's SOCKS5-over-AF_UNIX patch. See ticket #12585. Signed-off-by: Andrea Shepard <andrea@torproject.org> 2014-08-11 21:27:04 +02:00			`o Major features (security)`
			`- Implementation of SocksSocket option - SocksSocket implements a SOCKS`
			`proxy reachable by Unix Domain Socket. This allows client applications to`
			`communicate with Tor without having the ability to create AF_INET or`
			`AF_INET6 family sockets. If an application has permission to create a socket`
			`with AF_UNIX, it may directly communicate with Tor as if it were an other`
			`SOCKS proxy. This should allow high risk applications to be entirely prevented`
			`from connecting directly with TCP/IP, they will be able to only connect to the`
			`internet through AF_UNIX and only through Tor.`