[tor-bugs] #13885 [Tor]: AllowDotExit strange behavior
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Jan 14 14:52:46 UTC 2015
#13885: AllowDotExit strange behavior
-----------------------------+--------------------------------
Reporter: nixscripter | Owner:
Type: defect | Status: closed
Priority: major | Milestone: Tor: 0.2.6.x-final
Component: Tor | Version:
Resolution: not a bug | Keywords:
Actual Points: | Parent ID:
Points: |
-----------------------------+--------------------------------
Changes (by nickm):
* status: new => closed
* resolution: => not a bug
Comment:
Here's what I'm seeing in that log.
When you resolve ftp.sjtu.cn.kramse.exit, it uses kramse.exit to resolve
ftp.sjtu.cn. That gives you the IP address 202.38.97.230.
Then your application asks for a connection to 202.38.97.230, but it
doesn't request "202.38.97.230.kramse.exit". So Tor is allowed to connect
to that address with any exit it wants.
It looks to me like you need to use AutomapHostsOnResolve and
AutomapHostsSuffixes here; in that case, Tor would respond to the Resolve
request by telling you 127.129.x.y or something, and then later when you
asked for 127.129.x.y, it would remember that you wanted that to mean
"ftp.sjtu.cn.kramse.exit"
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13885#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list