[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] Tor 0.2.7.6 is released
>> Tor version 0.2.7.6 fixes a major bug in entry guard selection,
>> - Actually look at the Guard flag when selecting a new directory
>> guard. When we implemented the directory guard design, we
>> accidentally started treating all relays as if they have the Guard
>> flag during guard selection, leading to weaker anonymity and worse
>> performance. Fixes bug 17772; bugfix on 0.2.4.8-alpha. Discovered
>> by Mohsen Imani.
> Is this bug found also in 0.2.6.10, or only in 0.2.7.5?
the changelog says "bugfix on 0.2.4.8-alpha" which means all tor
releases since 0.2.4.8-alpha and released before 2015-12-10 are affected.
The trac entry is tagged with: 024-backport 025-backport 026-backport
As you can see on gitweb.torproject.org Nick is preparing some more releases
but most ordinary users will probably (and should) just use torbrowser
and the tor version that comes with it (so we might see an update there
> What does "weaker anonymity" mean exactly? How big is the risk? Can this
> bug lead to deanonymization?
> For more information on the guard bug, see Roger's preliminary analysis
If you want to read more about directory guards (compared to an entry
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to