[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] Tor 0.2.7.6 is released
-----BEGIN PGP SIGNED MESSAGE-----
Nick Mathewson <nickm@xxxxxxxxxxxxxx>:
> Tor version 0.2.7.6 fixes a major bug in entry guard selection,
> - Actually look at the Guard flag when selecting a new directory
> guard. When we implemented the directory guard design, we
> accidentally started treating all relays as if they have the Guard
> flag during guard selection, leading to weaker anonymity and worse
> performance. Fixes bug 17772; bugfix on 0.2.4.8-alpha. Discovered
> by Mohsen Imani.
Is this bug found also in 0.2.6.10, or only in 0.2.7.5?
Are users of 0.2.6.10 (as this is still the stable version; 0.2.7.6 is
listed as unstable) encouraged to upgrade to 0.2.7.6?
What does "weaker anonymity" mean exactly? How big is the risk? Can this
bug lead to deanonymization?
Oskar Wendel, o.wendel@xxxxxxxxxxxxxxxxx
Pubkey at https://pgp.mit.edu/pks/lookup?search=0x6690CC52318DB84C
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to