[tbb-bugs] #14424 [Tor]: Connecting by Hostname

[Tor Bug Tracker & Wiki]

#14424: Connecting by Hostname
-------------------------+-------------------------------------
 Reporter:  Kyuske       |          Owner:  tbb-team
     Type:  enhancement  |         Status:  new
 Priority:  Medium       |      Milestone:  Tor: very long term
Component:  Tor          |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
  Sponsor:               |
-------------------------+-------------------------------------
Changes (by teor):

 * priority:  High => Medium
 * component:  Tor Browser => Tor
 * milestone:   => Tor: very long term


Comment:

 This is a core tor feature request.

 It could be implemented by extending ReachableAddresses to resolve DNS
 names when parsing the policy.

 But there are a few issues with this:
 * DNS resultion results change, we would have to periodically refresh the
 policy;
   * do we do this based on record TTL?
   * what if DNS fails? temporarily? permanently?
   * this has caused us other issues in the past
 * DNS names can resolve to multiple IP addresses depending on time and
 location and various other factors, how can we know we have them all?
 * tor tries very hard not to depend on DNS because it can be a weak link -
 it's not authenticated,
 * leaking the sites users are prepared to access via DNS queries could
 identify the user, or make those sites the target of attacks.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/14424#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online