[tor-bugs] #11139 [BridgeDB]: BridgeDB's email whitelist should include @riseup.net
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Jul 31 00:46:44 UTC 2014
#11139: BridgeDB's email whitelist should include @riseup.net
--------------------------+-------------------------------------------
Reporter: isis | Owner: isis
Type: defect | Status: closed
Priority: normal | Milestone:
Component: BridgeDB | Version:
Resolution: fixed | Keywords: bridgedb-email,bridgedb-0.2.3
Actual Points: | Parent ID:
Points: |
--------------------------+-------------------------------------------
Comment (by isis):
Replying to [comment:18 harmony]:
> I have a Riseup email address. I sent a message to
bridges at torproject.org today at 09:12AM UTC with a blank subject and the
line 'get transport obfs3' in the body. There was no reply. What am I
doing wrong?
You're doing nothing wrong...
It seems like [https://packages.debian.org/wheezy/python-dkim the program
which checks DKIM signatures] on BridgeDB's server is not able to check
Riseup's DKIM signatures, because the incoming emails to BridgeDB from
Riseup have:
{{{X-DKIM-Verification-Results: dunno}}}
The relevant `~/.procmailrc` rules are:
{{{
:0fw
| formail -I "X-DKIM-Authentication-Results: dunno"
:0
* ^DKIM-Signature:
{
:0 HBfw
* ? dkimverify
| formail -I "X-DKIM-Authentication-Results: pass"
}
:0w
| esmtp -C /srv/bridges.torproject.org/etc/estmprc-bridgedb-deliver
bridges at bridgedb
}}}
And `dkimverify` says that the following email (which is a copy of the
test email I sent from my riseup address) has ok DKIM:
{{{
bridgedb at ponticum:~$ cat bridgedb-dkim-test
Return-Path: <isis at riseup.net>
Delivered-To: <isis at patternsinthevoid.net>
Received: from patternsinthevoid.net
by greyarea.patternsinthevoid.net (Dovecot) with LMTP id
MLKLCuh92VMsdQAABwIL0w
for <isis at patternsinthevoid.net>; Wed, 30 Jul 2014 23:21:12 +0000
Received: from localhost (localhost [127.0.0.1])
by patternsinthevoid.net (Postfix) with ESMTP id 1C98C3A1417
for <isis at patternsinthevoid.net>; Wed, 30 Jul 2014 23:21:12 +0000
(UTC)
Authentication-Results: patternsinthevoid.net; dkim=pass
reason="1024-bit key; unprotected key/testing"
header.d=riseup.net header.i=@riseup.net header.b=Vnk6lwKm;
dkim-adsp=pass; dkim-atps=neutral
X-Virus-Scanned: Debian amavisd-new at patternsinthevoid.net
Received: from patternsinthevoid.net ([127.0.0.1])
by localhost (greyarea.patternsinthevoid.net [127.0.0.1])
(amavisd-new, port 10024)
with ESMTP id BpcQqUomihKk for <isis at patternsinthevoid.net>;
Wed, 30 Jul 2014 23:21:08 +0000 (UTC)
Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129])
by patternsinthevoid.net (Postfix) with ESMTPS id 39A433A1414
for <isis at patternsinthevoid.net>; Wed, 30 Jul 2014 23:21:08 +0000
(UTC)
Received: from fruiteater.riseup.net (fruiteater-pn.riseup.net
[10.0.1.74])
(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
(Client CN "*.riseup.net", Issuer "Gandi Standard SSL CA" (not
verified))
by mx1.riseup.net (Postfix) with ESMTPS id 435AB58CEA;
Wed, 30 Jul 2014 16:21:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=riseup.net; s=squak;
t=1406762466; bh=geV4F0KI1Mues5CH4rmr96iqGo0bWWCKtKhuWWdY6aA=;
h=Date:Subject:From:To:Cc:Reply-To:From;
b=Vnk6lwKmB3WQTG+UlMwCa2CqkXPA6ORUwrosuIJqSQm7ahdgWGUUiXZOybSvIEqad
5d/19hkqaEWCapAtQ/4vqFTKrzQk8dy9s/qBX4S6VPAk8JioFQwntl5v/XvZT2VwPh
VgNMVebDqzBs1W6Wsqd79ispYTSsT5J1wHAlcH8E=
Message-ID:
<dba6adc4b1bb2119e4bd27fb2681073b.squirrel at fruiteater.riseup.net>
Date: Wed, 30 Jul 2014 16:21:05 -0700
Subject:
From: "isis agora lovecruft" <isis at riseup.net>
To: bridges at torproject.org
Cc: isis at patternsinthevoid.net
Reply-To: isis at riseup.net
User-Agent: SquirrelMail/1.4.21
MIME-Version: 1.0
Content-Type: text/plain;charset=utf-8
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-Virus-Scanned: clamav-milter 0.98.1 at mx1
X-Virus-Status: Clean
get transport fte
bridgedb at ponticum:~$ cat bridgedb-dkim-test | dkimverify
signature ok
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11139#comment:19>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list