[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17303 [DirAuth]: Bad exits inject port 8123 into HTTP redirects

Subject: Re: [tor-bugs] #17303 [DirAuth]: Bad exits inject port 8123 into HTTP redirects
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 10 Nov 2015 23:41:45 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 10 Nov 2015 18:41:52 -0500
In-reply-to: <048.c3308ddada295d84ad720e0027528e00@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <048.c3308ddada295d84ad720e0027528e00@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17303: Bad exits inject port 8123 into HTTP redirects
----------------------+----------------------------------
 Reporter:  ikurua22  |          Owner:
     Type:  defect    |         Status:  new
 Priority:  High      |      Milestone:  Tor: unspecified
Component:  DirAuth   |        Version:  Tor: unspecified
 Severity:  Critical  |     Resolution:
 Keywords:            |  Actual Points:
Parent ID:            |         Points:
  Sponsor:            |
----------------------+----------------------------------

Comment (by teor):

 Replying to [comment:8 dcf]:
 > Here is what I have been able to find about these exits.
 >
 > They seem to only affect plain HTTP redirects. For example, the URL
 >   http://arstechnica.com/?p=716619
 > should redirect to the URL
 >   http://arstechnica.com/tech-policy/2015/07/crypto-activists-announce-
 vision-for-tor-exit-relay-in-every-library/
 > but some exits instead rewrite the URL to be
 >   http://arstechnica.com:8123/tech-policy/2015/07/crypto-activists-
 announce-vision-for-tor-exit-relay-in-every-library/
 >

 It looks like this is a misconfigured polipo or other caching proxy in
 front of the exit.
 I can't imagine how this sort of interference could be deliberate or
 useful.

 However, regardless of intent, it is interfering with traffic. It's also
 evidence that other, more subtle analysis/interference may be happening.

 Thanks for this analysis, dcf, and the detailed update.

 > I ran attachment:http-redirect.py three times in the past weeks.
 >  2015-10-04:: 54 bad exits
 >  2015-10-17:: 39 bad exits
 >  2015-11-10:: 8 bad exits

 I'm assuming that the exit numbers are decreasing because they're listed
 by the DirAuths as bad exits, in response to your emails (or running
 exitmap themselves).

 It seems we're solving the problem, albeit incrementally.

 Are the remaining exits new instances, or existing instances that haven't
 been blocked yet?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17303#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #17303 [DirAuth]: Bad exits inject port 8123 into HTTP redirects
Next by Author: [tor-bugs] #17583 [Tor]: manual missing --keygen description
Previous by thread: Re: [tor-bugs] #17303 [DirAuth]: Bad exits inject port 8123 into HTTP redirects
Next by thread: Re: [tor-bugs] #17303 [DirAuth]: Bad exits inject port 8123 into HTTP redirects
Index(es):
- Author
- Thread