From cd6d6d76d7e3e993875b1916cfdae1d702ae42eb Mon Sep 17 00:00:00 2001
From: Roger Dingledine <arma@torproject.org>
Date: Tue, 21 Sep 2004 22:12:27 +0000
Subject: [PATCH] update tor-doc, recommend running server as a separate user

svn:r2361
---
 doc/tor-doc.html | 14 +++++---------
 1 file changed, 5 insertions(+), 9 deletions(-)

diff --git a/doc/tor-doc.html b/doc/tor-doc.html
index 90cdbf900d..7ee816e1bf 100644
--- a/doc/tor-doc.html
+++ b/doc/tor-doc.html
@@ -223,14 +223,15 @@ that have at least 1Mbit each way. Currently we don't use all of that,
 but we want it available for burst traffic.</p>
 
 <p>(The Tor server doesn't need to be run as root, and doesn't
-need any special system permissions or kernel mods. If you're
-the paranoid sort, feel free to <a
+need any special system permissions or kernel mods. You should probably
+run it as its own user though, especially if you run an identd service
+too. If you're the paranoid sort, feel free to <a
 href="http://wiki.noreply.org/wiki/TheOnionRouter/TorInChroot">put it
 into a chroot jail</a>.)</p>
 
 <p>First, copy torrc.sample to torrc (by default it's in
 /usr/local/etc/tor/), and edit the middle part. Create the DataDirectory,
-and make sure it's owned by whoever will be running tor. Fix your system
+and make sure it's owned by the uid/gid that will be running tor. Fix your system
 clock so it's not too far off. Make sure name resolution works. Open a
 hole in your firewall so outsiders can connect to your ORPort.</p>
 
@@ -242,11 +243,6 @@ tor-ops@freehaven.net.</p>
 if there's any problem.  Also describe what kind of connectivity the new
 server will have. If possible, PGP sign your mail.</p>
 
-<p>NOTE: You won't be able to use tor as a client or server
-in this configuration until you've been added to the directory
-and can authenticate to the other nodes. (This is no longer the case
-for 0.0.8 and after.)</p>
-
 <p>Once your fingerprint has been approved, you can click <a
 href="http://moria.seul.org:9031/">here</a> or <a
 href="http://62.116.124.106:9030/">here</a> and look at the
@@ -319,7 +315,7 @@ the latest cvs version may not compile or work right). Then:
 <li>4a: Edit src/or/config.c and change the default_dirservers_string array
 so that it reflects the contents of the new dirservers file instead
 of the old one. Be sure to get the quotes and newlines and semicolons
-right. (This step sucks. We plan to have it solved by the release of 0.0.8.)
+right. (This step sucks. We plan to have it solved by the release of 0.0.9.)
 <li>4b: Replace the dirservers file in your sandbox (in src/config/)
 with the one from step 3.
 <li>4c: edit configure.in, change the AM_INIT_AUTOMAKE(tor, 0.0.8)