[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #25662 [Core Tor/Tor]: OBSOLETE OLD TOR CRYPTO AND ONLY RESOLVE OLD .ONION ADDRESSES

To: undisclosed-recipients: ;
Subject: [tor-bugs] #25662 [Core Tor/Tor]: OBSOLETE OLD TOR CRYPTO AND ONLY RESOLVE OLD .ONION ADDRESSES
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 28 Mar 2018 06:35:05 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 28 Mar 2018 02:35:17 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#25662: OBSOLETE OLD TOR CRYPTO AND ONLY RESOLVE OLD .ONION ADDRESSES
------------------------------+------------------------------------
     Reporter:  Anony         |      Owner:  (none)
         Type:  defect        |     Status:  new
     Priority:  Immediate     |  Milestone:  Tor: unspecified
    Component:  Core Tor/Tor  |    Version:  Tor: unspecified
     Severity:  Critical      |   Keywords:  Upgraded Circuits, TOR
Actual Points:                |  Parent ID:
       Points:                |   Reviewer:
      Sponsor:                |
------------------------------+------------------------------------
 I think it would be best to completely obsolete all the old crypto within
 TOR, but if it is possible to only use it to resolve old .onion addresses
 and NOT to build new circuits EVER.

 This would essentially be a firewall inside Tor to start only building
 circuits by default using the New Encryption introduced in Tor 0.3.2.9

 There has been enough time elapsed for operators to upgrade and this is a
 serious bug if TOR is building obsolete circuits with obsolete TOR nodes.
 Thus the Default and Only setting should be to only build circuits using
 the Newer Encryption standard now that enough relays are already using the
 newer nodes.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25662>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #25662 [Core Tor/Tor]: OBSOLETE OLD TOR CRYPTO AND ONLY RESOLVE OLD .ONION ADDRESSES
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #23169 [Metrics/Website]: Explain why metrics are important and what we do to make sure they're safe
Next by Author: Re: [tor-bugs] #25547 [Metrics/CollecTor]: Put out CollecTor 1.5.1
Previous by thread: Re: [tor-bugs] #25661 [Core Tor/Tor]: RendPostPeriod and HiddenServiceAuthorizeClient are v2 only
Next by thread: Re: [tor-bugs] #25662 [Core Tor/Tor]: OBSOLETE OLD TOR CRYPTO AND ONLY RESOLVE OLD .ONION ADDRESSES
Index(es):
- Author
- Thread