[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #1666 [Tor Client]: SOCKS handling should accept (and ignore) password auth.

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #1666 [Tor Client]: SOCKS handling should accept (and ignore) password auth.
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Thu, 14 Oct 2010 01:26:35 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 13 Oct 2010 21:26:46 -0400
In-reply-to: <045.7219aac67e5dbe64a99b03de12ac79f6@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bugs reporting list for trac <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.7219aac67e5dbe64a99b03de12ac79f6@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#1666: SOCKS handling should accept (and ignore) password auth.
-------------------------+--------------------------------------------------
 Reporter:  nickm        |       Owner:  mwenge      
     Type:  enhancement  |      Status:  needs_review
 Priority:  minor        |   Milestone:              
Component:  Tor Client   |     Version:              
 Keywords:               |      Parent:              
-------------------------+--------------------------------------------------

Comment(by nickm):

 Also, sadly, this code is going to need some light refactoring to work now
 that we've merged the bufferevents branch.  It's worth doing, since we
 want to also port those &@# unit tests.

 It looks like a config_register_addressmaps change leaked into this patch;
 see config.h and config.c.

 Also, it looks like the new parsing code doesn't actually make sure that
 the username/password stuff appears as the *second* thing the client says.
 We should make sure we check for that.

 Also, is it really disallowed for the client to start writing data before
 the socks handshake is done?  What's the harm in allowing extra data?

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/1666#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #2001 [Tor Relay]: Reachability test for ORPort doesn't complete with --enable-bufferevents set
Next by Author: Re: [tor-bugs] #1992 [Tor Relay]: relays resolve hostname every time they compute dir fetch schedule; but bridges resolve too seldom
Previous by thread: Re: [tor-bugs] #1666 [Tor Client]: SOCKS handling should accept (and ignore) password auth.
Next by thread: Re: [tor-bugs] #1666 [Tor Client]: SOCKS handling should accept (and ignore) password auth.
Index(es):
- Author
- Thread