<div dir="ltr"><div class="gmail_default" style="font-size:small">Any movement on this? anything new?<br><br></div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Sun, Feb 9, 2014 at 9:52 PM, Matt <span dir="ltr"><<a href="mailto:matt@pagan.io" target="_blank">matt@pagan.io</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On Fri, 07 Feb 2014 09:54:35 +0400<br>
meejah <<a href="mailto:meejah@meejah.ca">meejah@meejah.ca</a>> wrote:<br>
<br>
> What I would suggest:<br>
><br>
> 1. change ConnectDialog so that it always uses not-yet-looked-up<br>
> QHostAddresses (perhaps only if a proxy is enabled). This still<br>
> won't help Tor, since they're sending UDP.<br>
><br>
> 2. change Cert.cpp so it doesn't have to do a host-lookup. I sort-of<br>
> asked in my other email, but does this actually gain anything?<br>
> That is, does checking that the domain looks up "to something" really<br>
> accomplish anything useful? If the answer is "yes", then more<br>
> thinking; all I can think of is attempting a TCP/UDP connection<br>
> (again, with a not-yet-looked-up QHostAddress) to the server in<br>
> question (which will only work if there is a well-known port upon<br>
> which it should be listening to be considered valid).<br>
><br>
<br>
I haven't actually confirmed that there is a DNS leak here. I've been<br>
focusing mostly on ConnectDialog, but mentioned Cert because it also<br>
had DNS-related code that I hadn't spent as much time with.<br>
<br>
> 3. suggest/document that Tor uses need to un-set the "show reachable"<br>
> (Settings::ShowReachable) option so that a server doesn't need a<br>
> valid ping-reply to show up in the list.<br>
><br>
> Another option might be to factor out all the "ping" stuff to its own<br>
> class and simply not instatiate/use it when ShowReachable is off (or<br>
> have a separate option for pinging all the servers).<br>
><br>
> Yet another different option might be to just have an option to turn<br>
> off the pinging of servers, leaving open the Cert.cpp question (which<br>
> one could also punt on by having an option). Then the game would be<br>
> to get Tor users to have the right options enabled ;)<br>
><br>
<br>
I tried to do something like this in my branch; optionally turning off<br>
pings to Public and LAN servers was easy. Turning off pings to Favorite<br>
servers seemed a little trickier, especially if they are still to<br>
remain reachable.<br>
<br>
Thanks for all the pointers. A C++ developer volunteered to take a<br>
closer look at this issue. At this point, I think further discussion<br>
would most useful for all parties if it moved onto the bug ticket:<br>
<div class="HOEnZb"><div class="h5"><a href="https://github.com/mumble-voip/mumble/issues/1033" target="_blank">https://github.com/mumble-voip/mumble/issues/1033</a><br>
_______________________________________________<br>
tor-dev mailing list<br>
<a href="mailto:tor-dev@lists.torproject.org">tor-dev@lists.torproject.org</a><br>
<a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev" target="_blank">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev</a><br>
</div></div></blockquote></div><br></div>