[tor-bugs] #9332 [BridgeDB]: Implement whitelisting of (email_address, gpg_key_id) pairs for encrypted, automated email bridge distribution
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Jul 25 22:58:42 UTC 2014
#9332: Implement whitelisting of (email_address, gpg_key_id) pairs for encrypted,
automated email bridge distribution
--------------------------+-------------------------------------------
Reporter: asn | Owner: isis
Type: task | Status: needs_revision
Priority: normal | Milestone:
Component: BridgeDB | Version:
Resolution: | Keywords: bridgedb-email, bridgedb-dist
Actual Points: | Parent ID:
Points: |
--------------------------+-------------------------------------------
Changes (by isis):
* status: accepted => needs_revision
Comment:
The whitelisting has been enabled in the config file, but it doesn't yet
check GPG signatures on whitelisted emails. Instead, "whitelisted" mail
goes through the same DKIM checks and timing interval checks as other
providers, but it skips the `canonicalizeDomainName()` check.
We still need to implement checking GPG signatures before we allow
whitelisted addresses to get a pass on DKIM. And we also need to implement
encrypting responses to these addresses.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9332#comment:13>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list