[tor-bugs] #15515 [Tor]: Don't allow multiple INTRODUCE1s on the same circuit
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Apr 1 17:13:16 UTC 2015
#15515: Don't allow multiple INTRODUCE1s on the same circuit
-------------------------+-------------------------------------------------
Reporter: asn | Owner:
Type: defect | Status: needs_review
Priority: normal | Milestone: Tor: 0.2.6.x-final
Component: Tor | Version:
Resolution: | Keywords: 026-backport 025-backport
Actual Points: | 024-backport
Points: | Parent ID: #15463
-------------------------+-------------------------------------------------
Changes (by yawning):
* keywords: 026-backport 025-backport => 026-backport 025-backport
024-backport
Comment:
This needs a spec change to document the new behavior for implementations.
Given that a large fraction of the network is still running 0.2.4.x, IMO
this should be backported to maint-0.2.4, otherwise there's a good chance
that HSes will pick IPs that are running unpatched versions, and will
still be easily DoSable.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/15515#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list