[tor-bugs] #19025 [Core Tor/Tor]: Exit relays always return DNS TTL 60 to tor clients

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Jul 28 02:47:09 UTC 2016


#19025: Exit relays always return DNS TTL 60 to tor clients
-------------------------------------------------+-------------------------
 Reporter:  phw                                  |          Owner:
     Type:  defect                               |         Status:
 Priority:  Medium                               |  needs_revision
Component:  Core Tor/Tor                         |      Milestone:  Tor:
 Severity:  Normal                               |  0.2.???
 Keywords:  dns, TorCoreTeam201607,              |        Version:  Tor:
  029-proposed                                   |  0.2.8.2-alpha
Parent ID:                                       |     Resolution:
 Reviewer:                                       |  Actual Points:
                                                 |         Points:  0.5
                                                 |        Sponsor:
-------------------------------------------------+-------------------------
Changes (by teor):

 * status:  new => needs_revision
 * keywords:  dns => dns, TorCoreTeam201607, 029-proposed
 * points:   => 0.5
 * milestone:   => Tor: 0.2.???


Comment:

 Design Comments:

 I would feel more comfortable if we rounded down each TTL received from a
 DNS server, to avoid tagging attacks.

 But I think that's probably a separate ticket, split off into #19769.

 I'd like to merge both tickets in the same release, so that we only ever
 send rounded values for IPv4 and IPv6 TTLs.

 Code Review:

 This is a 2-line patch, that we really should put in 0.2.9 with #19769 if
 we can.
 (It seems that #19769 would also be a very small change.)

 It needs a changes file tor/changes/bug19025, matching the format of the
 other bug* files in that directory. It could easily be created using
 ticket and the commit comment.

 phw, do you want to do the changes file? Do you want to do #19769?
 I'm happy to do either.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19025#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list