[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #21989 [Core Tor/Tor]: Should we tell Exits to reject all traffic if DNS fails?

Subject: [tor-bugs] #21989 [Core Tor/Tor]: Should we tell Exits to reject all traffic if DNS fails?
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 19 Apr 2017 05:21:59 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 19 Apr 2017 01:22:09 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#21989: Should we tell Exits to reject all traffic if DNS fails?
------------------------------+------------------------------
     Reporter:  teor          |      Owner:
         Type:  defect        |     Status:  new
     Priority:  Medium        |  Milestone:  Tor: unspecified
    Component:  Core Tor/Tor  |    Version:
     Severity:  Normal        |   Keywords:  dns, tor-exit
Actual Points:                |  Parent ID:  #21900
       Points:  1             |   Reviewer:
      Sponsor:                |
------------------------------+------------------------------
 Tor Exits with broken DNS still allow Exit traffic.

 But this slows down initial connections for clients, because the Exit will
 refuse all DNS requests. (Clients no longer cache DNS.)

 Perhaps we should make Exits refuse traffic until their DNS is working?
 (Unless a non-default option is set?)

 This would also fix #21900, where a broken DNS config really does stop all
 Exit traffic.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21989>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: [tor-bugs] #21942 [User Experience/Website]: Sitemapping the current site layout
Next by Author: Re: [tor-bugs] #22013 [User Experience/Blog]: Migrate blog.tpo
Previous by thread: Re: [tor-bugs] #21988 [- Select a component]: says not usingtor
Next by thread: [tor-bugs] #21990 [Metrics/Torflow]: Use a sensible default set of bandwidth servers
Index(es):
- Author
- Thread