[tor-bugs] #3940 [Tor Client]: Allow MapAddress .exit even if AllowDotExit is 0
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Wed Mar 28 08:54:58 UTC 2012
#3940: Allow MapAddress .exit even if AllowDotExit is 0
------------------------+---------------------------------------------------
Reporter: sjmurdoch | Owner:
Type: defect | Status: needs_review
Priority: major | Milestone: Tor: 0.2.3.x-final
Component: Tor Client | Version: Tor: 0.2.2.32
Keywords: regression | Parent:
Points: | Actualpoints:
------------------------+---------------------------------------------------
Comment(by arma):
Replying to [comment:7 nickm]:
> Probably fix in branch bug3940_022 in my public repository.
Looks fine I think. Bonus points if somebody has tested it. :)
> Should there be an additional option that says "not even in MapAddress"?
Maybe.
I'd say no. It's a pretty esoteric use. "Don't set a torrc option you
didn't want to set" is probably better advice than adding more code to
Tor. The goal of AllowDotExit was to protect us against remote hosts that
can make us ask our socks port for new destinations. There's no analog to
that with MapAddress.
> Should there be more documentation that says that AllowDotExit 0 doesn't
apply to TrackHostExits and MapAddress? Yes, I think so.
Yes.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3940#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list