[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #14424 [Tor]: Connecting by Hostname
#14424: Connecting by Hostname
-------------------------+-------------------------------------
Reporter: Kyuske | Owner: tbb-team
Type: enhancement | Status: new
Priority: Medium | Milestone: Tor: very long term
Component: Tor | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------+-------------------------------------
Changes (by teor):
* priority: High => Medium
* component: Tor Browser => Tor
* milestone: => Tor: very long term
Comment:
This is a core tor feature request.
It could be implemented by extending ReachableAddresses to resolve DNS
names when parsing the policy.
But there are a few issues with this:
* DNS resultion results change, we would have to periodically refresh the
policy;
* do we do this based on record TTL?
* what if DNS fails? temporarily? permanently?
* this has caused us other issues in the past
* DNS names can resolve to multiple IP addresses depending on time and
location and various other factors, how can we know we have them all?
* tor tries very hard not to depend on DNS because it can be a weak link -
it's not authenticated,
* leaking the sites users are prepared to access via DNS queries could
identify the user, or make those sites the target of attacks.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/14424#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs