[tor-bugs] #11139 [BridgeDB]: BridgeDB's email whitelist should include @riseup.net

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Jul 31 00:46:44 UTC 2014 

#11139: BridgeDB's email whitelist should include @riseup.net
--------------------------+-------------------------------------------
     Reporter:  isis      |      Owner:  isis
         Type:  defect    |     Status:  closed
     Priority:  normal    |  Milestone:
    Component:  BridgeDB  |    Version:
   Resolution:  fixed     |   Keywords:  bridgedb-email,bridgedb-0.2.3
Actual Points:            |  Parent ID:
       Points:            |
--------------------------+-------------------------------------------

Comment (by isis):

 Replying to [comment:18 harmony]:
 > I have a Riseup email address. I sent a message to
 bridges at torproject.org today at 09:12AM UTC with a blank subject and the
 line 'get transport obfs3' in the body. There was no reply. What am I
 doing wrong?

 You're doing nothing wrong...

 It seems like [https://packages.debian.org/wheezy/python-dkim the program
 which checks DKIM signatures] on BridgeDB's server is not able to check
 Riseup's DKIM signatures, because the incoming emails to BridgeDB from
 Riseup have:

 {{{X-DKIM-Verification-Results: dunno}}}

 The relevant `~/.procmailrc` rules are:

 {{{
 :0fw
         | formail -I "X-DKIM-Authentication-Results: dunno"

 :0
 * ^DKIM-Signature:
 {
         :0 HBfw
         * ? dkimverify
                 | formail -I "X-DKIM-Authentication-Results: pass"
 }

 :0w
 | esmtp -C /srv/bridges.torproject.org/etc/estmprc-bridgedb-deliver
 bridges at bridgedb
 }}}

 And `dkimverify` says that the following email (which is a copy of the
 test email I sent from my riseup address) has ok DKIM:

 {{{
 bridgedb at ponticum:~$ cat bridgedb-dkim-test
 Return-Path: <isis at riseup.net>
 Delivered-To: <isis at patternsinthevoid.net>
 Received: from patternsinthevoid.net
         by greyarea.patternsinthevoid.net (Dovecot) with LMTP id
 MLKLCuh92VMsdQAABwIL0w
         for <isis at patternsinthevoid.net>; Wed, 30 Jul 2014 23:21:12 +0000
 Received: from localhost (localhost [127.0.0.1])
         by patternsinthevoid.net (Postfix) with ESMTP id 1C98C3A1417
         for <isis at patternsinthevoid.net>; Wed, 30 Jul 2014 23:21:12 +0000
 (UTC)
 Authentication-Results: patternsinthevoid.net; dkim=pass
         reason="1024-bit key; unprotected key/testing"
         header.d=riseup.net header.i=@riseup.net header.b=Vnk6lwKm;
         dkim-adsp=pass; dkim-atps=neutral
 X-Virus-Scanned: Debian amavisd-new at patternsinthevoid.net
 Received: from patternsinthevoid.net ([127.0.0.1])
         by localhost (greyarea.patternsinthevoid.net [127.0.0.1])
 (amavisd-new, port 10024)
         with ESMTP id BpcQqUomihKk for <isis at patternsinthevoid.net>;
         Wed, 30 Jul 2014 23:21:08 +0000 (UTC)
 Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129])
         by patternsinthevoid.net (Postfix) with ESMTPS id 39A433A1414
         for <isis at patternsinthevoid.net>; Wed, 30 Jul 2014 23:21:08 +0000
 (UTC)
 Received: from fruiteater.riseup.net (fruiteater-pn.riseup.net
 [10.0.1.74])
         (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
         (Client CN "*.riseup.net", Issuer "Gandi Standard SSL CA" (not
 verified))
         by mx1.riseup.net (Postfix) with ESMTPS id 435AB58CEA;
         Wed, 30 Jul 2014 16:21:06 -0700 (PDT)
 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=riseup.net; s=squak;
         t=1406762466; bh=geV4F0KI1Mues5CH4rmr96iqGo0bWWCKtKhuWWdY6aA=;
         h=Date:Subject:From:To:Cc:Reply-To:From;
 b=Vnk6lwKmB3WQTG+UlMwCa2CqkXPA6ORUwrosuIJqSQm7ahdgWGUUiXZOybSvIEqad
 5d/19hkqaEWCapAtQ/4vqFTKrzQk8dy9s/qBX4S6VPAk8JioFQwntl5v/XvZT2VwPh
          VgNMVebDqzBs1W6Wsqd79ispYTSsT5J1wHAlcH8E=
 Message-ID:
 <dba6adc4b1bb2119e4bd27fb2681073b.squirrel at fruiteater.riseup.net>
 Date: Wed, 30 Jul 2014 16:21:05 -0700
 Subject:
 From: "isis agora lovecruft" <isis at riseup.net>
 To: bridges at torproject.org
 Cc: isis at patternsinthevoid.net
 Reply-To: isis at riseup.net
 User-Agent: SquirrelMail/1.4.21
 MIME-Version: 1.0
 Content-Type: text/plain;charset=utf-8
 Content-Transfer-Encoding: 8bit
 X-Priority: 3 (Normal)
 Importance: Normal
 X-Virus-Scanned: clamav-milter 0.98.1 at mx1
 X-Virus-Status: Clean

 get transport fte


 bridgedb at ponticum:~$ cat bridgedb-dkim-test | dkimverify
 signature ok
 }}}

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11139#comment:19>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tor-bugs mailing list