[tor-bugs] #8682 [Tor]: Bad exit node

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Apr 11 05:32:42 UTC 2013


#8682: Bad exit node
----------------------+-----------------------------------------------------
 Reporter:  Jens      |          Owner:                  
     Type:  defect    |         Status:  new             
 Priority:  major     |      Milestone:  Tor: unspecified
Component:  Tor       |        Version:  Tor: unspecified
 Keywords:  bad exit  |         Parent:                  
   Points:            |   Actualpoints:                  
----------------------+-----------------------------------------------------
 I'm not sure how/where to report this properly.  Sorry about that.

 Yesterday, exit node 72B2CDC96A83CA3C801A122F851C1C6C8339EBDF~Unnamed
 presented a self-signed certificate, when I wanted to retrieve e-mail via
 IMAPS:
 fetchmail: Fehler bei Server-Zertifikat-Überprüfung: self signed
 certificate in certificate chain
 fetchmail: Das heißt, dass das Wurzelzertifikat (ausgestellt für
 /C=US/ST=Nevada/L=Newbury/O=Main Authority/OU=Certificate
 Management/CN=main.authority.com/emailAddress=cert at authority.com) nicht
 unter den vertrauenswürdigen CA-Zertifikaten ist, oder dass c_rehash auf
 dem Verzeichnis ausgeführt werden muss. Details sind in der fetchmail-
 Handbuchseite im bei --sslcertpath beschrieben.
 23734:error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate
 verify failed:s3_clnt.c:985:

 Tor control info:

 SETEVENTS CIRC STREAM ADDRMAP
 250 OK
 650 STREAM 26 NEWRESOLVE 0 pop3.web.de:0 PURPOSE=DNS_REQUEST
 650 STREAM 26 REMAP 0 212.227.17.177:0 SOURCE=CACHE
 650 STREAM 26 SUCCEEDED 0 pop3.web.de:0
 650 STREAM 26 CLOSED 0 pop3.web.de:0 REASON=DONE
 650 STREAM 27 NEW 0 212.227.17.161:995 SOURCE_ADDR=127.0.0.1:58846
 PURPOSE=USER
 650 STREAM 27 SENTCONNECT 13 212.227.17.161:995
 650 STREAM 27 REMAP 13 212.227.17.161:995 SOURCE=EXIT
 650 STREAM 27 SUCCEEDED 13 212.227.17.161:995
 650 STREAM 27 CLOSED 13 212.227.17.161:995 REASON=CONNRESET
 GETINFO stream-status
 250-stream-status=
 250 OK
 GETINFO circuit-status
 250+circuit-status=
 [...]
 13 BUILT
 $863D45319121DE1BB4F50DE7931FEC422FBFD76E=sabotage,$38DC37A8C215C1718EB0031FB9689EA846862551~Unnamed,$72B2CDC96A83CA3C801A122F851C1C6C8339EBDF~Unnamed
 BUILD_FLAGS=NEED_CAPACITY PURPOSE=GENERAL
 TIME_CREATED=2013-04-10T18:30:27.682032
 [...]

 Somewhat (ca. 10min) later:
 GETINFO ns/name/$72B2CDC96A83CA3C801A122F851C1C6C8339EBDF~Unnamed
 250+ns/name/$72B2CDC96A83CA3C801A122F851C1C6C8339EBDF~Unnamed=
 r Unnamed crLNyWqDyjyAGhIvhRwcbIM5698 76Xk96VU80WBQigeYxRxyqrjxgM
 2013-04-10 14:54:31 64.237.42.140 9001 0
 s Exit Fast Running Stable Valid
 w Bandwidth=23300

 An IP address with the same prefix is listed here:
 https://trac.torproject.org/projects/tor/wiki/doc/badRelays

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8682>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list