[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #8289 [Tor bundles/installation]: check hashes of files we download against expected hash value

To: undisclosed-recipients:;
Subject: [tor-bugs] #8289 [Tor bundles/installation]: check hashes of files we download against expected hash value
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 20 Feb 2013 02:33:50 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 19 Feb 2013 21:33:59 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8289: check hashes of files we download against expected hash value
--------------------------------------+-------------------------------------
 Reporter:  ioerror                   |          Owner:  erinn
     Type:  enhancement               |         Status:  new  
 Priority:  normal                    |      Milestone:       
Component:  Tor bundles/installation  |        Version:       
 Keywords:                            |         Parent:  #8288
   Points:                            |   Actualpoints:       
--------------------------------------+-------------------------------------
 Per #8283, we need to check the hash of each file we download against the
 expected value. This should ensure that we never build without explicitly
 approving each new version _and_ a hash for each new version. It will also
 ensure that when an attacker tampers with the file on the remote server,
 we will not attempt to build likely hostile source bundles or load hostile
 extensions.

 I think I'll just write a simple macro to check all of the hashes after
 all the downloads complete. Does that seem like a reasonable approach?

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8289>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #8286 [Tor bundles/installation]: Fetch software during TBB build process only over trusted HTTPS
Next by Author: Re: [tor-bugs] #8283 [Tor bundles/installation]: track hashes for all TBB dep source files
Previous by thread: Re: [tor-bugs] #8288 [Tor bundles/installation]: security, relability and repeatability issues in the TBB build process
Next by thread: Re: [tor-bugs] #6752 [Tor]: TestingTorNetwork doesn't lower the dir fetch retry schedules
Index(es):
- Author
- Thread