[or-cvs] r17654: {tor} Add manpage documentation for ServerDNSRandomizeCase. (tor/trunk/doc)
nickm at seul.org
nickm at seul.org
Wed Dec 17 20:58:38 UTC 2008
Author: nickm
Date: 2008-12-17 15:58:38 -0500 (Wed, 17 Dec 2008)
New Revision: 17654
Modified:
tor/trunk/doc/tor.1.in
Log:
Add manpage documentation for ServerDNSRandomizeCase.
Modified: tor/trunk/doc/tor.1.in
===================================================================
--- tor/trunk/doc/tor.1.in 2008-12-17 20:12:08 UTC (rev 17653)
+++ tor/trunk/doc/tor.1.in 2008-12-17 20:58:38 UTC (rev 17654)
@@ -1027,6 +1027,17 @@
authority guess which countries have blocked access to it.
.LP
.TP
+\fBServerDNSRandomizeCase \fR\fB0\fR|\fB1\fR\fP
+When this option is set, Tor sets the case of each character randomly in
+outgoing DNS requests, and makes sure that the case matches in DNS replies.
+This so-called "0x20 hack" helps resist some types of DNS poisoning attack.
+For more information, see "Increased DNS Forgery Resistance through 0x20-Bit
+Encoding".
+This option only affects name lookups that your server does on
+behalf of clients.
+(Default: 1)
+.LP
+.TP
\fBGeoIPFile \fR\fIfilename\fP
A filename containing GeoIP data, for use with BridgeRecordUsageByCountry.
More information about the tor-commits
mailing list