[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-commits] [torspec/master] Add a graf about fingerprinting anonymous directory connections.

To: tor-commits@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-commits] [torspec/master] Add a graf about fingerprinting anonymous directory connections.
From: nickm@xxxxxxxxxxxxxx
Date: Fri, 9 Feb 2018 13:41:15 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 09 Feb 2018 08:41:30 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-commits/>
List-help: <mailto:tor-commits-request@lists.torproject.org?subject=help>
List-id: "auto: code repository commits" <tor-commits.lists.torproject.org>
List-post: <mailto:tor-commits@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-commits>, <mailto:tor-commits-request@lists.torproject.org?subject=unsubscribe>
Patch-author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Sender: "tor-commits" <tor-commits-bounces@xxxxxxxxxxxxxxxxxxxx>

commit 9ddf104ae43c0a1eb88d617cf1a4513af8930561
Author: Nick Mathewson <nickm@xxxxxxxxxxxxxx>
Date:   Fri Feb 9 08:40:33 2018 -0500

    Add a graf about fingerprinting anonymous directory connections.
---
 dir-spec.txt | 15 ++++++++++-----
 1 file changed, 10 insertions(+), 5 deletions(-)

diff --git a/dir-spec.txt b/dir-spec.txt
index 003e400..ece2991 100644
--- a/dir-spec.txt
+++ b/dir-spec.txt
@@ -3636,11 +3636,16 @@
      - "x-tor-lzma"   -- The lzma compression algorithm, with a "preset"
                          value no higher than 6.
 
-  Clients SHOULD use Accept-Encoding to indicate which of the above
-  compression algorithms they support.  If they omit it (as Tor clients
-  did before 0.3.1.1-alpha), then the server should serve only "deflate"
-  or "identity" encoded documents, based on the presence or absence of
-  the ".z" suffix on the requested URL.
+  Clients SHOULD use Accept-Encoding on most directory requests to indicate
+  which of the above compression algorithms they support.  If they omit it
+  (as Tor clients did before 0.3.1.1-alpha), then the server should serve
+  only "deflate" or "identity" encoded documents, based on the presence or
+  absence of the ".z" suffix on the requested URL.
+
+  Note that for anonymous directory requests (that is, requests made over
+  multi-hop circuits, like those for onion service lookups) implementations
+  SHOULD NOT advertise any Accept-Encoding values other than deflate.  To do
+  so would be to create a fingerprinting opportunity.
 
   When receiving multiple documents, clients MUST accept compressed
   concatenated documents and concatenated compressed documents as

_______________________________________________
tor-commits mailing list
tor-commits@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-commits

Prev by Author: [tor-commits] [tor/release-0.3.2] test: Add unit tests for overflows and underflows in cc_stats_refill_bucket
Next by Author: [tor-commits] [tor/master] protover: Fix memleak in Rust implementation.
Previous by thread: [tor-commits] [torspec/master] Merge branch 'document_prop278'
Next by thread: [tor-commits] [atlas/master] Hides the Guard and HSDir flags for bridges (Fixes: #24885)
Index(es):
- Author
- Thread