[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #11624 [Tor]: Malicious relays may be able to be assigned Exit flag without exiting anywhere

Subject: Re: [tor-bugs] #11624 [Tor]: Malicious relays may be able to be assigned Exit flag without exiting anywhere
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 13 Nov 2014 14:28:31 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 13 Nov 2014 09:28:40 -0500
In-reply-to: <043.e2b629e219c4ddf6cb2d892d541eafe2@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.e2b629e219c4ddf6cb2d892d541eafe2@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#11624: Malicious relays may be able to be assigned Exit flag without exiting
anywhere
------------------------+------------------------------------
     Reporter:  tom     |      Owner:
         Type:  defect  |     Status:  new
     Priority:  minor   |  Milestone:  Tor: 0.2.7.x-final
    Component:  Tor     |    Version:  Tor: unspecified
   Resolution:          |   Keywords:  tor-auth 026-triaged-1
Actual Points:          |  Parent ID:
       Points:          |
------------------------+------------------------------------
Changes (by teor):

 * milestone:  Tor: 0.2.6.x-final => Tor: 0.2.7.x-final


Comment:

 The core of this issue appears to be that the Exit flag code is optimistic
 (just needs a /8 and 2 ports), but the microdescriptor exit policy summary
 code is pessimistic (needs the entire internet).

 We need a proposal to fix the microdescriptor exit policy summary code
 (and a new consensus method), but the Exit flag could be fixed to be more
 pessimistic straight away, as it is assigned by authorities.

 Perhaps it is easiest to just make one depend on the other?
 (A quick fix would be to summarise the exit policy, then use that as input
 to the Exit flag determination. This would also require a documentation
 fix.)

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11624#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #13751 [Tor Browser]: SSC_startup() is undefined
Next by Author: Re: [tor-bugs] #13513 [Tor]: Tor randomly hangs
Previous by thread: Re: [tor-bugs] #6088 [Tor]: Gather data about possible transition to 2048bit RSA/DHE
Next by thread: Re: [tor-bugs] #11624 [Tor]: Malicious relays may be able to be assigned Exit flag without exiting anywhere
Index(es):
- Author
- Thread