[or-cvs] r17586: {tor} put recent release blurbs into the changelog; fix a typo in (in tor/trunk: . doc/spec)

arma at seul.org arma at seul.org
Thu Dec 11 17:18:04 UTC 2008


Author: arma
Date: 2008-12-11 12:18:03 -0500 (Thu, 11 Dec 2008)
New Revision: 17586

Modified:
   tor/trunk/ChangeLog
   tor/trunk/ReleaseNotes
   tor/trunk/doc/spec/tor-spec.txt
Log:
put recent release blurbs into the changelog; fix a typo in tor-spec.


Modified: tor/trunk/ChangeLog
===================================================================
--- tor/trunk/ChangeLog	2008-12-11 15:58:14 UTC (rev 17585)
+++ tor/trunk/ChangeLog	2008-12-11 17:18:03 UTC (rev 17586)
@@ -40,6 +40,10 @@
 
 
 Changes in version 0.2.1.8-alpha - 2008-12-08
+  Tor 0.2.1.8-alpha fixes some crash bugs in earlier alpha releases,
+  builds better on unusual platforms like Solaris and old OS X, and
+  fixes a variety of other issues.
+
   o Major features:
     - New DirPortFrontPage option that takes an html file and publishes
       it as "/" on the DirPort. Now relay operators can provide a
@@ -101,6 +105,12 @@
 
 
 Changes in version 0.2.0.32 - 2008-11-20
+  Tor 0.2.0.32 fixes a major security problem in Debian and Ubuntu
+  packages (and maybe other packages) noticed by Theo de Raadt, fixes
+  a smaller security flaw that might allow an attacker to access local
+  services, further improves hidden service performance, and fixes a
+  variety of other issues.
+
   o Security fixes:
     - The "User" and "Group" config options did not clear the
       supplementary group entries for the Tor process. The "User" option
@@ -166,6 +176,13 @@
 
 
 Changes in version 0.2.1.7-alpha - 2008-11-08
+  Tor 0.2.1.7-alpha fixes a major security problem in Debian and Ubuntu
+  packages (and maybe other packages) noticed by Theo de Raadt, fixes
+  a smaller security flaw that might allow an attacker to access local
+  services, adds better defense against DNS poisoning attacks on exit
+  relays, further improves hidden service performance, and fixes a
+  variety of other issues.
+
   o Security fixes:
     - The "ClientDNSRejectInternalAddresses" config option wasn't being
       consistently obeyed: if an exit relay refuses a stream because its

Modified: tor/trunk/ReleaseNotes
===================================================================
--- tor/trunk/ReleaseNotes	2008-12-11 15:58:14 UTC (rev 17585)
+++ tor/trunk/ReleaseNotes	2008-12-11 17:18:03 UTC (rev 17586)
@@ -4,6 +4,12 @@
 each development snapshot, see the ChangeLog file.
 
 Changes in version 0.2.0.32 - 2008-11-20
+  Tor 0.2.0.32 fixes a major security problem in Debian and Ubuntu
+  packages (and maybe other packages) noticed by Theo de Raadt, fixes
+  a smaller security flaw that might allow an attacker to access local
+  services, further improves hidden service performance, and fixes a
+  variety of other issues.
+
   o Security fixes:
     - The "User" and "Group" config options did not clear the
       supplementary group entries for the Tor process. The "User" option

Modified: tor/trunk/doc/spec/tor-spec.txt
===================================================================
--- tor/trunk/doc/spec/tor-spec.txt	2008-12-11 15:58:14 UTC (rev 17585)
+++ tor/trunk/doc/spec/tor-spec.txt	2008-12-11 17:18:03 UTC (rev 17586)
@@ -253,8 +253,8 @@
 
    To avoid being trivially distinguished from servers, client-only Tor
    instances are encouraged but not required to use a two-certificate chain
-   as well.  Clients SHOULD NOT use keep using the same certificates when
-   their IP changes.  Clients MAY send no certificates at all.
+   as well.  Clients SHOULD NOT keep using the same certificates when
+   their IP address changes.  Clients MAY send no certificates at all.
 
 3. Cell Packet format
 



More information about the tor-commits mailing list