[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: any middlemen seeing DoS currently?

On Fri, Nov 07, 2008 at 01:38:28PM +0100, Eugen Leitl wrote:
> I've seen continuous table state increase since about >3.5 hours.
> It went up from 1 k baseline to 5 k.
> Anyone else seeing this? Any alternative explanation to DoS? (ISP
> throttling?).

Judging by the timing, I'd think it might be related to a bug we only
uncovered on Friday.  Why Friday?  That was the first time that a
directory authority's certificate expired before it could be replaced.
The bug was that clients repeatedly asked directory caches for a new
certificate over and over, without noticing that they were getting
something expired and deciding to wait for a while.

That bug should be fixed in newer versions of Tor.  Also, all the
authority operators should (if we can make them) get way more careful
about checking certificate expiry times.