[tor-bugs] #7066 [Tor]: Guard disablement by path-bias detector must be disabled or removed
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sun Oct 7 23:19:27 UTC 2012
#7066: Guard disablement by path-bias detector must be disabled or removed
------------------------+---------------------------------------------------
Reporter: rransom | Owner:
Type: defect | Status: new
Priority: blocker | Milestone: Tor: 0.2.3.x-final
Component: Tor | Version:
Keywords: tor-client | Parent:
Points: | Actualpoints:
------------------------+---------------------------------------------------
Currently, any three dirauths (or any two dirauths if one other one starts
voting on the relevant consensus parameters) can configure Tor clients to
stop using their entry guards after a very small number of failed circuit-
build attempts. This is as bad for a client as having UseEntryGuards
disabled entirely.
Tor 0.2.3.x users will be compromised by this without even a log message
warning them that they are abandoning entry guards.
This feature must be disabled completely for now or removed. The current
path-bias detector code is unsafe to use with ''any'' non-zero value of
`pb_disablepct`.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7066>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list