[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor 0.2.1.12-alpha is out

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor 0.2.1.12-alpha is out
From: Jari Turkia <jmjt@xxxxxx>
Date: Tue, 10 Feb 2009 11:34:31 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 10 Feb 2009 04:34:34 -0500
In-reply-to: <20090209230430.GB19155@xxxxxxxxxxxxxx>
References: <20090209230430.GB19155@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Thunderbird 2.0.0.19 (Windows/20081209)

Roger Dingledine wrote:

Tor 0.2.1.12-alpha features several more security-related fixes. You

...

    - Fix a temporary DoS vulnerability that could be performed by
      a directory mirror. Bugfix on 0.2.0.9-alpha; reported by lark.


Is there a bug report about excessive log flooding?

Feb 01 04:02:32.473 [warn] Failing because we have 1016 connectionsalready. Please raise your ulimit -n.Feb 01 04:02:32.860 [warn] Failing because we have 1016 connectionsalready. Please raise your ulimit -n.Feb 01 04:02:35.847 [notice] accept failed: Too many open files.Dropping incoming connection.Feb 01 04:02:35.847 [notice] accept failed: Too many open files.Dropping incoming connection.

Raising ulimit -n is not an option for all of us. What is needed is aconfig option to limit number of connections and limit the logging. In acouple of hours there will be 3 gigabytes of log. This makes it possibleto DoS a tor-node.


Regards,
Jari Turkia

Follow-Ups:
- Re: Tor 0.2.1.12-alpha is out
  - From: Roger Dingledine

References:
- Tor 0.2.1.12-alpha is out
  - From: Roger Dingledine

Prev by Author: Re: Some Bones to Pick with Tor Admins
Next by Author: Re: Tor 0.2.1.12-alpha is out
Previous by thread: Tor 0.2.1.12-alpha is out
Next by thread: Re: Tor 0.2.1.12-alpha is out
Index(es):
- Author
- Thread