invalid certificate warning

Roger Dingledine arma at mit.edu
Wed Oct 19 01:42:54 UTC 2005


On Tue, Oct 18, 2005 at 03:59:14PM -0700, jed c wrote:
> I'm not sure if this is a software bug or an attempt
> to exploit tor in some way. 
> 
> Oct 17 00:10:34.687 [Warn] tor_tls_verify():
> Unexpected number of certificates in chain (0)
> Oct 17 00:10:34.703 [Warn]
> connection_tls_finish_handshake(): Other side, which
> claims to be router 'delhs' (69.168.246.252:58188),
> has a cert but it's invalid. Closing.

Somebody is running a Tor client (or server?) at that address that doesn't
follow the Tor spec. I'm not sure who it is or what they're working on.

The new versions of Tor (in CVS) don't warn about this particular issue
anymore, since it isn't anything that the Tor operator who sees it can
do anything about.

--Roger



More information about the tor-talk mailing list