[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #6546 [Tor Client]: Replace check.tp.o with internal mapaddress + JSON/XML object
#6546: Replace check.tp.o with internal mapaddress + JSON/XML object
-------------------------+--------------------------------------------------
Reporter: ioerror | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Tor: 0.2.4.x-final
Component: Tor Client | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------+--------------------------------------------------
Comment(by weasel):
Replying to [comment:3 weasel]:
> We could even map the hostname to a real-world static website telling
users what went wrong. Since connections go over tor, just not DNS
resolution, this shouldn't result in anybody connecting to us directly.
If DNS resolutions are misconfigured that would still result in leaking
the fact that they try tor onto the network, but I'm not sure if or how
that could be fixed.
Not sure that's such a good idea after all. a) the goal is to make this
machine usable - no point in having pretty pages that explain things. b)
we could still make a static status page if we can't handle NXDOMAIN
properly, but we just should. And c) if we are under attack by lying DNS,
we can't trust a status page anyway.
For (c) the client that does the check could send a cookie to Tor when it
goes to http://127.234.234.234:5432/ (Hi, I'm $name, cookie is $cookie),
and when it goes to http://selftest.torproject.org/$name over tor it
expects that page to prove it knows $cookie.
I don't know if the dns test is useful at all though.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6546#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs