[tor-dev] Anycast Exits (related : Special-use-TLD support)

Jeff Burdges burdges at gnunet.org
Wed Sep 30 19:57:45 UTC 2015

On Wed, 2015-09-30 at 15:39 +0200, Tim Wilson-Brown - teor wrote:

> >  First, Tor adds the line "ACE <protocol> <host>:<port>" to the
> > node's
> >  Second, Tor allows connections to ip:port as if the torrc contains
> > :
> >    ExitPolicy allow<host>:<port>
> >  As ExitPolicyRejectPrivate defaults to 1, these policies should be
> >  allowed even if the ip lies in a range usually restricted.  
> >  In particular localhost and are potentially allowed.
> Tor exit policies don’t contain hostnames like “localhost", did you
> mean and ::1?
> I am concerned about the security considerations of opening up local
> addresses, as local processes often trust connections from the local
> machine. Perhaps we could clarify it to say that only the specific
> port on and ::1 is allowed?

Yes, that's the effect of the ExitPolicy line described.  We should not
disable ExitPolicyRejectPrivate, merely ensure that the new exit policy
be processed before it.  I'll add some language to clarify, slightly. 
 I'm futzing around to make sure that just an ExitPolicy line does this
already too.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part
URL: <http://lists.torproject.org/pipermail/tor-dev/attachments/20150930/17919ef8/attachment.sig>

More information about the tor-dev mailing list