[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #22962 [Core Tor/Tor]: Clarify the security severity of issues that make denial of service easier

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #22962 [Core Tor/Tor]: Clarify the security severity of issues that make denial of service easier
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 20 Mar 2018 12:04:04 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 20 Mar 2018 08:04:19 -0400
In-reply-to: <044.41a269f4ba512b523360b946f1cc9be0@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.41a269f4ba512b523360b946f1cc9be0@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#22962: Clarify the security severity of issues that make denial of service easier
--------------------------+----------------------------------
 Reporter:  teor          |          Owner:  nickm
     Type:  task          |         Status:  accepted
 Priority:  Medium        |      Milestone:  Tor: unspecified
Component:  Core Tor/Tor  |        Version:
 Severity:  Normal        |     Resolution:
 Keywords:  docs policy   |  Actual Points:
Parent ID:  #22948        |         Points:
 Reviewer:                |        Sponsor:  SponsorV
--------------------------+----------------------------------
Changes (by nickm):

 * milestone:  Tor: 0.3.3.x-final => Tor: unspecified


Comment:

 We've had the existing definitions for a while, and they doesn't seem to
 have actually caused confusion in practice.  I did this part on the wiki
 page:

 >  And I think we should be more explicit that we may revise severities
 upwards or downwards depending on specifics of the issue.

 but I'm going to move this ticket into Undecided for now.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22962#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #17901 [Core Tor/Tor]: Tor would bind ControlPort to public ip address if it has no localhost interface
Next by Author: [tor-bugs] #25599 [Obfuscation/Snowflake]: SOCKS4 failure message
Previous by thread: Re: [tor-bugs] #25553 [- Select a component]: Cannot pass recapcha using Tor
Next by thread: [tor-bugs] #25554 [Applications/Tor Browser]: Bump mingw-w64 version for ESR 60
Index(es):
- Author
- Thread