[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18759 [Tor]: Extend onion address to include authentication data

Subject: Re: [tor-bugs] #18759 [Tor]: Extend onion address to include authentication data
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 07 Apr 2016 23:09:31 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 07 Apr 2016 19:27:46 -0400
In-reply-to: <044.3d7e2be2acc0c787639b3aea34028c4d@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.3d7e2be2acc0c787639b3aea34028c4d@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18759: Extend onion address to include authentication data
----------------------------------------------------+---------------------
 Reporter:  twim                                    |          Owner:
     Type:  enhancement                             |         Status:  new
 Priority:  Medium                                  |      Milestone:
Component:  Tor                                     |        Version:
 Severity:  Normal                                  |     Resolution:
 Keywords:  authenticated, hs, rendclient, address  |  Actual Points:
Parent ID:                                          |         Points:
 Reviewer:                                          |        Sponsor:
----------------------------------------------------+---------------------

Comment (by arma):

 Once upon a time, we expected onion addresses to be of the form x.y.onion,
 where we indeed put other things like authentication info in them.

 But we abandoned this design when we realized that client applications
 like browsers were sending the whole address along in their Host: header,
 so putting sensitive things there is going to cause surprises and bad
 results.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18759#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #18759 [Tor]: Extend onion address to include authentication data
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #18760 [Tor]: I'd like to customize rejection message from dir auths to relay (was: Would like to customize rejection message from dir auths to relay)
Next by Author: Re: [tor-bugs] #18759 [Tor]: Extend onion address to include authentication data
Previous by thread: [tor-bugs] #18759 [Tor]: Extend onion address to include authentication data
Next by thread: Re: [tor-bugs] #18759 [Tor]: Extend onion address to include authentication data
Index(es):
- Author
- Thread