[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18319 [Core Tor/Tor]: Exclude relays that don't match pinned RSA/Ed key pairs

Subject: Re: [tor-bugs] #18319 [Core Tor/Tor]: Exclude relays that don't match pinned RSA/Ed key pairs
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 23 Jan 2017 01:04:17 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 22 Jan 2017 20:04:27 -0500
In-reply-to: <044.59eeca84621acda74a21d23ce2c97d3a@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.59eeca84621acda74a21d23ce2c97d3a@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18319: Exclude relays that don't match pinned RSA/Ed key pairs
-------------------------------------------------+-------------------------
 Reporter:  teor                                 |          Owner:  nickm
     Type:  defect                               |         Status:  closed
 Priority:  High                                 |      Milestone:  Tor:
                                                 |  0.3.0.x-final
Component:  Core Tor/Tor                         |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  tor-ed25519-proto, nickm-            |  implemented
  deferred-20160905, review-group-15             |  Actual Points:
Parent ID:                                       |         Points:  1
 Reviewer:                                       |        Sponsor:
                                                 |  SponsorU-can
-------------------------------------------------+-------------------------

Comment (by teor):

 Just a reminder for when we deploy this code:

 Has anyone checked that each directory authority's current key pairs are
 pinned consistently by every other directory authority?

 When we ran into this issue in the test network, I had to delete the RSA
 and ed keys for the broken authority, and regenerate them (and then we had
 to update all the torrc authority lines). If this happened in the public
 network, we would have to update the tor source code.

 When the first authority deploys this code, we'll find some
 inconsistencies, but it will take a majority of authorities (ideally with
 consistent pairings) to affect the consensus.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18319#comment:33>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #9913 [Metrics/Atlas]: Explain relay flags in detail view using tooltips
Next by Author: Re: [tor-bugs] #21219 [Metrics/CollecTor]: collector should rm data from out/ after archiving
Previous by thread: Re: [tor-bugs] #18319 [Core Tor/Tor]: Exclude relays that don't match pinned RSA/Ed key pairs
Next by thread: [tor-bugs] [Tor Bug Tracker & Wiki] Batch modify: #20931, #20832, #11211, #18320, ...
Index(es):
- Author
- Thread