You don't need a shell for the debian-tor user. CookieAuthentication
should work, if you set CookieAuthentication 1 in /etc/tor/torrc and are
using an armrc file.
I think the problem with CookieAuthentication was that the cookie file
control_auth_cookie gets written
to /var/lib/tor. This directory is only readable by user debian-tor and
not even group readable. I have
put CookieAuthFileGroupReadable 1 into the config file. But with my
standard user which is in the debian-tor group i cannot
access this file inside /var/lib/tor because the permissions of this
directory are set up by tor on startup to 700.
Try to have a look into /etc/default/tor and
/usr/share/tor/tor-service-defaults-torrc, there should be some relevant
settings.
Hopefully it helps.
Maybe i should have add that i do not use the debian init.d script to
start up tor but a native systemd service file.
I think its a shame that debian switched to systemd but still relays on
init.d scripts for so many services. So /etc/default/tor does not get used.
_______________________________________________
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays