[tor-relays] Is my relay affected by cve-2016-8860?
nusenu
nusenu at openmailbox.org
Tue Nov 15 21:17:00 UTC 2016
https://blog.torproject.org/blog/tor-0289-released-important-fixes
If you are unsure whether you are running a vulnerable tor relay, you
can search your contact string on the following page (sorted by cw
fraction):
https://github.com/ornetstats/stats/blob/master/o/cve-2016-8860.txt
(generated daily)
If you are on that page you are likely running a vulnerable version
(unless someone else is using your contactinfo as well)
Unfortunately the opposite does not hold true - meaning you are not 100%
safe if you are not listed
(I tried to keep the false positives low for the price of a higher
false-negative rate).
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20161115/3dab75c0/attachment.sig>
More information about the tor-relays
mailing list