[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17901 [Tor]: Tor would bind ControlPort to public ip address if it has no localhost interface

Subject: Re: [tor-bugs] #17901 [Tor]: Tor would bind ControlPort to public ip address if it has no localhost interface
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 22 Dec 2015 16:55:43 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 22 Dec 2015 11:55:56 -0500
In-reply-to: <043.b018eeb23aacf1c327b47561602c473f@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.b018eeb23aacf1c327b47561602c473f@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17901: Tor would bind ControlPort to public ip address if it has no localhost
interface
---------------------------------------+-----------------------------------
 Reporter:  s7r                        |          Owner:
     Type:  defect                     |         Status:  new
 Priority:  High                       |      Milestone:  Tor:
Component:  Tor                        |  0.2.8.x-final
 Severity:  Major                      |        Version:  Tor: 0.2.7.6
 Keywords:  027-backport 026-backport  |     Resolution:
Parent ID:                             |  Actual Points:
  Sponsor:                             |         Points:
---------------------------------------+-----------------------------------

Comment (by s7r):

 I think we should automatically disable ControlPort, ExtORPort, TransPort
 and DNSPort if we have no `lo` interface (127.0.0.1 localhost address) and
 they are set with just the port number or auto. If the setting for them is
 <pulic IP / NAT IP>:<port> we assume it's wanted and expected to be open
 there and proceed, but with loud warnings that it's a terrible idea. Maybe
 we should require authentication for ControlPort if opened on public / nat
 IP or quit otherwise? Not entirely sure if it's worth it.

 For ORPort and DirPort binding to whatever IP address it sees is fine, we
 shouldn't change the behavior for these two, so whatever fixes we apply
 should be related to `ControlPort` `TransPort` `DNSPort` `ExtORPort` and
 `SocksPort`. Hope I didn't miss anything.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17901#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #17901 [Tor]: Tor would bind ControlPort to public ip address if it has no localhost interface
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #17830 [metrics-lib]: use StringBuilder correctly
Next by Author: Re: [tor-bugs] #16940 [Tor Browser]: Implement loading (only) local change notes after a Tor Browser update
Previous by thread: Re: [tor-bugs] #17901 [Tor]: Tor would bind ControlPort to public ip address if it has no localhost interface
Next by thread: Re: [tor-bugs] #17901 [Tor]: Tor would bind ControlPort to public ip address if it has no localhost interface
Index(es):
- Author
- Thread