[tor-bugs] #28789 [Core Tor/sbws]: Stop allowing destination serving files without tls
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sat Dec 8 17:20:17 UTC 2018
#28789: Stop allowing destination serving files without tls
-------------------------------+-------------------------------
Reporter: juga | Owner: (none)
Type: defect | Status: new
Priority: Medium | Milestone: sbws: 1.0.x-final
Component: Core Tor/sbws | Version: sbws: 1.0.2
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
-------------------------------+-------------------------------
In #28647 we say that TLS is required, but sbws configuration allows
destinations using plain HTTP, and it's not documented.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28789>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list