[tor-bugs] #23980 [Core Tor/Tor]: Provide torrc option to kill hidden service circuits after $TIMEOUT

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Oct 25 05:58:33 UTC 2017


#23980: Provide torrc option to kill hidden service circuits after $TIMEOUT
------------------------------+--------------------------------
     Reporter:  mikeperry     |      Owner:  (none)
         Type:  enhancement   |     Status:  new
     Priority:  Medium        |  Milestone:  Tor: 0.3.3.x-final
    Component:  Core Tor/Tor  |    Version:
     Severity:  Normal        |   Keywords:  guard-discovery
Actual Points:                |  Parent ID:
       Points:                |   Reviewer:
      Sponsor:  SponsorV-can  |
------------------------------+--------------------------------
 HTTP hidden services and other short-lived protocols do not need to keep
 their circuits open very long. Somewhere between 10min and 1 hour ought to
 be plenty. Since long-lived circuits are a vector for guard discovery (see
 #22728), we should provide a torrc option to set a max hidden service
 circuit lifetime.

 Note that making this timeout too low effectively enables new forms of
 #20212, so we should err towards an hour for the timeout here until that
 fix is landed.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23980>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list