[tor-bugs] #21413 [Core Tor/Tor]: Exits can get the Exit flag without having any ports in their microdescriptor port summary
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Feb 8 06:29:31 UTC 2017
#21413: Exits can get the Exit flag without having any ports in their
microdescriptor port summary
------------------------------+------------------------------
Reporter: teor | Owner:
Type: defect | Status: new
Priority: Medium | Milestone: Tor: unspecified
Component: Core Tor/Tor | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: 1 | Reviewer:
Sponsor: |
------------------------------+------------------------------
Almost all clients, relays, and authorities use microdescriptors by
default.
Microdescriptor port summaries include a port if it exits to almost all
IPv4 addresses (blocks no more than an IPv4 /7).
But the Exit flag is given if at least two of ports 80, 443, 6667 exit to
at least an IPv4 /8.
This means an Exit can get the Exit flag, without having any of these
ports in its IPv4 exit policy summary.
I suggest we only award the Exit flag if an Exit has at least two of ports
80, 443, 6667 in its IPv4 Exit policy summary.
This also requires a spec change for the Exit flag.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21413>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list