[tor-bugs] #4592 [Tor Relay]: tor_tls_server_info_callback(): SSL3_ST_SW_SRVR_HELLO_B missed.
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Tue Nov 29 20:29:45 UTC 2011
#4592: tor_tls_server_info_callback(): SSL3_ST_SW_SRVR_HELLO_B missed.
-----------------------+----------------------------------------------------
Reporter: troll_un | Owner:
Type: defect | Status: new
Priority: normal | Milestone: Tor: 0.2.2.x-final
Component: Tor Relay | Version: Tor: 0.2.2.34
Keywords: | Parent:
Points: | Actualpoints:
-----------------------+----------------------------------------------------
Comment(by Sebastian):
{{{
< frosty_un> oh puppets we are wrong, it's not about blocking tor
protocol, it's about downgrade from v2 to v1 by enemy. not sure what is
worsiest thing.
< frosty_un> we are talkking about expoiting #4592.
< frosty_un> HMAcs easy bypassing with tcp window, nice isn't?
< frosty_un> viva la "This check is redundant". no rollback attack, only
blocking tor protocol: server thinks it's a v2 while client using conn
like v1.
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/4592#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list