Opened 3 years ago

Closed 3 years ago

#22268 closed defect (implemented)

TROVE-2017-003: Impersonation of a single fallback directory mirror

Reported by: teor Owned by:
Priority: Medium Milestone: Tor: 0.3.1.x-final
Component: Core Tor/Tor Version:
Severity: Major Keywords: fallback
Cc: Actual Points:
Parent ID: #21564 Points: 0.1
Reviewer: Sponsor:

Child Tickets

Change History (2)

comment:1 Changed 3 years ago by teor

Parent ID: #21564

comment:2 Changed 3 years ago by nickm

Resolution: implemented
Status: newclosed

The impact here is that whoever currently controls the IP and keys will enumerate the IP addresses of about 0.7% of the users connecting to the network for the first time. They won't get to see any user traffic or user activity. I think this should be classified as "low severity", though I think our security policy may need clarification on the point.

Teor, I believe that this IP got removed as a fallback as I merged your fallbacks-201705-028 branch. Please let me know if that's not the case.

Note: See TracTickets for help on using tickets.