[tor-bugs] #17948 [Core Tor/Tor]: HiddenServicePort should connect to localhost by default
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Oct 9 05:12:13 UTC 2017
#17948: HiddenServicePort should connect to localhost by default
-------------------------------------------------+-------------------------
Reporter: teor | Owner: teor
Type: enhancement | Status:
| reopened
Priority: Low | Milestone: Tor:
| unspecified
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: ipv6, easy, maybe-bad-idea-or- | Actual Points:
maybe-not tor-hs |
Parent ID: | Points: small
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Comment (by arma):
I agree with teor that it's a security risk.
We should let the user say what address to point the onion service
connections to.
I've seen cases where a local resolve attempt for localhost went out to
Comcast's dns servers, which helpfully told me that localhost was
127.0.0.1, so then my application correctly went there.
Let's leave DNS the heck out of local computer decisions. :)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17948#comment:15>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list