[tor-bugs] #20431 [Core Tor/DirAuth]: do not recommend vulnerable tor versions - update "recommended versions"

Tue Oct 25 21:14:52 UTC 2016

#20431: do not recommend vulnerable tor versions - update "recommended versions"
------------------------------+-----------------------------
 Reporter:  cypherpunks       |          Owner:
     Type:  defect            |         Status:  closed
 Priority:  Medium            |      Milestone:
Component:  Core Tor/DirAuth  |        Version:
 Severity:  Normal            |     Resolution:  implemented
 Keywords:                    |  Actual Points:
Parent ID:                    |         Points:
 Reviewer:                    |        Sponsor:
------------------------------+-----------------------------
Changes (by cypherpunks):

 * status:  new => closed
 * resolution:   => implemented

Comment:

 I'm surprised you even removed the latest shipped tor in current TBB
 (there is no TBB with tor v0.2.8.9 yet) but so be it.

 New consensus is:
 {{{
 consensus
         client-versions 0.2.5.12, 0.2.7.6, 0.2.8.9, 0.2.9.4-alpha
         server-versions 0.2.5.12, 0.2.7.6, 0.2.8.9, 0.2.9.4-alpha
 }}}

 Ever TBB user will get a warning in now?

 This ticket is implemented.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20431#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online