[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #29607 [Core Tor/Tor]: Denial of service on v2 onion service (was: Need urgent help!)



#29607: Denial of service on v2 onion service
--------------------------+--------------------------
 Reporter:  pidgin        |          Owner:  pidgin
     Type:  defect        |         Status:  accepted
 Priority:  Immediate     |      Milestone:
Component:  Core Tor/Tor  |        Version:
 Severity:  Normal        |     Resolution:
 Keywords:                |  Actual Points:
Parent ID:                |         Points:
 Reviewer:                |        Sponsor:
--------------------------+--------------------------

Comment (by teor):

 #29610 and #29637 are duplicates of this ticket.

 #29637 contains the same information from the user, and this response from
 me:


 > The attack probably isn't on the Tor client. It's more likely it's on
 the service, HSDir or Intro Points. It may be on the service's Guard or
 Rendezvous Point, but they're harder to find and target.
 >
 > Have you tried v3 onion services?
 > They are much more resistant to attacks.
 > There is no OnionBalance for v3 yet, but the v3 crypto is more
 efficient, so you might not need it.

 Are you sure that your service is still running ok?
 Your service might be serving a small amount of traffic, and blocked on
 network requests. So its CPU would be low, and most clients would not be
 able to connect.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29607#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs