[tor-bugs] #31009 [Core Tor/Tor]: Tor lets transports advertise private IP addresses in descriptor
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Jun 28 03:21:55 UTC 2019
#31009: Tor lets transports advertise private IP addresses in descriptor
--------------------------+------------------------
Reporter: phw | Owner: (none)
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points: 0.5
Reviewer: | Sponsor:
--------------------------+------------------------
Comment (by arma):
My first thought, in terms of a low-impact hack, would be: when Tor is
building its extrainfo descriptor, it should notice that it's about to
advertise an internal address, and if so, put in the main ipv4 address of
that descriptor instead.
(For internal and testing Tor networks, where the main ipv4 address is
itself an internal address, no problem, we should use that.)
I think that simple change would resolve the vast majority of the cases
that we're seeing right now. Then we could imagine also adding a config
option to be able to say "I want to write a different line about my obfs4
PT into my extrainfo descriptor" -- but maybe that isn't an additional
complexity that our operators actually need.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/31009#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list