Source:   Sterling X. Winter <sterling.winter@gmail.com>
Upstream: no
Reason:   By default: drop daemon privs to tor/tor, enable logging, use a sane
          data dir.

--- tor-0.2.7.6.orig/src/config/torrc.sample.in	2015-11-13 14:41:38.000000000 +0100
+++ tor-0.2.7.6/src/config/torrc.sample.in	2016-02-04 13:20:50.024381439 +0100
@@ -12,6 +12,9 @@
 ## Tor will look for this file in various places based on your platform:
 ## https://www.torproject.org/docs/faq#torrc
 
+# On startup, setuid to this user and setgid to their primary group.
+User tor
+
 ## Tor opens a SOCKS proxy on port 9050 by default -- even if you don't
 ## configure one below. Set "SOCKSPort 0" if you plan to run Tor only
 ## as a relay, and not make any local application connections yourself.
@@ -40,6 +43,7 @@
 #Log debug file @LOCALSTATEDIR@/log/tor/debug.log
 ## Use the system log instead of Tor's logfiles
 #Log notice syslog
+Log notice file @LOCALSTATEDIR@/log/tor/tor.log
 ## To send all messages to stderr:
 #Log debug stderr
 
@@ -51,6 +55,7 @@
 ## The directory for keeping all the keys/etc. By default, we store
 ## things in $HOME/.tor on Unix, and in Application Data\tor on Windows.
 #DataDirectory @LOCALSTATEDIR@/lib/tor
+DataDirectory @LOCALSTATEDIR@/lib/tor/data
 
 ## The port on which Tor will listen for local connections from Tor
 ## controller applications, as documented in control-spec.txt.