[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] document aborted attempt to merge client dns cache with ser...

To: or-cvs@freehaven.net
Subject: [or-cvs] document aborted attempt to merge client dns cache with ser...
From: arma@seul.org (Roger Dingledine)
Date: Sun, 14 Dec 2003 02:50:47 -0500 (EST)
Delivered-to: archiver@seul.org
Delivered-to: or-cvs-outgoing@seul.org
Delivered-to: or-cvs@seul.org
Delivery-date: Sun, 14 Dec 2003 02:51:02 -0500
Reply-to: or-dev@freehaven.net
Sender: owner-or-cvs@freehaven.net

Update of /home/or/cvsroot/src/or
In directory moria.mit.edu:/home2/arma/work/onion/cvs/src/or

Modified Files:
	connection_edge.c 
Log Message:
document aborted attempt to merge client dns cache with server dns cache


Index: connection_edge.c
===================================================================
RCS file: /home/or/cvsroot/src/or/connection_edge.c,v
retrieving revision 1.73
retrieving revision 1.74
diff -u -d -r1.73 -r1.74
--- connection_edge.c	14 Dec 2003 07:40:47 -0000	1.73
+++ connection_edge.c	14 Dec 2003 07:50:45 -0000	1.74
@@ -838,6 +838,11 @@
 /* ***** Client DNS code ***** */
 
 /* XXX Perhaps this should get merged with the dns.c code somehow. */
+/* XXX But we can't just merge them, because then nodes that act as
+ *     both OR and OP could be attacked: people could rig the dns cache
+ *     by answering funny things to stream begin requests, and later
+ *     other clients would reuse those funny addr's. Hm.
+ */
 struct client_dns_entry {
   SPLAY_ENTRY(client_dns_entry) node;
   char *address;

Prev by Author: [or-cvs] change dns notation from question/answer to address/addr
Next by Author: [or-cvs] oops, i broke buffers. fixed.
Previous by thread: [or-cvs] change dns notation from question/answer to address/addr
Next by thread: [or-cvs] oops, i broke buffers. fixed.
Index(es):
- Author
- Thread