https://blog.torproject.org/blog/tor-0289-released-important-fixes
If you are unsure whether you are running a vulnerable tor relay, you can search your contact string on the following page (sorted by cw fraction):
https://github.com/ornetstats/stats/blob/master/o/cve-2016-8860.txt (generated daily)
If you are on that page you are likely running a vulnerable version (unless someone else is using your contactinfo as well)
Unfortunately the opposite does not hold true - meaning you are not 100% safe if you are not listed (I tried to keep the false positives low for the price of a higher false-negative rate).
Thank you Nusenu for your list.
Maybe you can add a Nickname column next time for all those, who have more than one hamster in the race.
Rgds Paul
Am 15.11.2016 um 22:17 schrieb nusenu:
https://blog.torproject.org/blog/tor-0289-released-important-fixes
If you are unsure whether you are running a vulnerable tor relay, you can search your contact string on the following page (sorted by cw fraction):
https://github.com/ornetstats/stats/blob/master/o/cve-2016-8860.txt (generated daily)
If you are on that page you are likely running a vulnerable version (unless someone else is using your contactinfo as well)
Unfortunately the opposite does not hold true - meaning you are not 100% safe if you are not listed (I tried to keep the false positives low for the price of a higher false-negative rate).
tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
tor-relays@lists.torproject.org
-
nusenu -
pa011