15 May
2011
15 May
'11
8:15 p.m.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512
those people might run self-compiled versions of Tor that are more up to date than they seem from the version string.
Alternatively, some of those relay operators (independent of the version that is shown in the descriptor) might run a version provided by their packaging system that backports security-relevant issues but leaves the rest of the updates alone, and thus doesn't increase the version.
This is also interesting in the context of #2980, #2988 (Not reporting version is actively harmful). -----BEGIN PGP SIGNATURE----- iF4EAREKAAYFAk3QNFwACgkQyM26BSNOM7YLWAEAlHF7fLBC5IPvqEHUZzKr3LaF e4EV0VxaD3lZcviOgT0BAJqGt+FCPjETh+6FwZ9L7WOvwvAGuY8uJg7KHuTK5Gj4 =qr4g -----END PGP SIGNATURE-----