[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #6546 [Tor Client]: Replace check.tp.o with internal mapaddress + JSON/XML object



#6546: Replace check.tp.o with internal mapaddress + JSON/XML object
-------------------------+--------------------------------------------------
 Reporter:  ioerror      |          Owner:                    
     Type:  enhancement  |         Status:  new               
 Priority:  normal       |      Milestone:  Tor: 0.2.4.x-final
Component:  Tor Client   |        Version:                    
 Keywords:               |         Parent:                    
   Points:               |   Actualpoints:                    
-------------------------+--------------------------------------------------

Comment(by weasel):

 Replying to [comment:3 weasel]:

 > We could even map the hostname to a real-world static website telling
 users what went wrong.  Since connections go over tor, just not DNS
 resolution, this shouldn't result in anybody connecting to us directly.
 If DNS resolutions are misconfigured that would still result in leaking
 the fact that they try tor onto the network, but I'm not sure if or how
 that could be fixed.

 Not sure that's such a good idea after all.  a) the goal is to make this
 machine usable - no point in having pretty pages that explain things.  b)
 we could still make a static status page if we can't handle NXDOMAIN
 properly, but we just should.  And c) if we are under attack by lying DNS,
 we can't trust a status page anyway.

 For (c) the client that does the check could send a cookie to Tor when it
 goes to http://127.234.234.234:5432/ (Hi, I'm $name, cookie is $cookie),
 and when it goes to http://selftest.torproject.org/$name over tor it
 expects that page to prove it knows $cookie.

 I don't know if the dns test is useful at all though.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6546#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs