Changes between Initial Version and Version 21 of Ticket #22688


Ignore:
Timestamp:
Jul 2, 2018, 5:10:30 AM (17 months ago)
Author:
teor
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #22688

    • Property Status changed from new to needs_revision
    • Property Version changed from Tor: unspecified to
    • Property Parent ID changed from to #17945
    • Property Milestone changed from Tor: 0.3.1.x-final to Tor: unspecified
    • Property Summary changed from HSDir3s should refuse direct client descriptor uploads and downloads, even if encrypted to hs: stop HSDirs being used as single-hop "proxies"
    • Property Owner set to teor
    • Property Points changed from 0.2 to 0.3
    • Property Actual Points changed from 0.2 to 0.3
    • Property Keywords tor-hs 034-triage-20180328 034-removed-20180328 added; prop224 031-backport no-030-backport removed
  • Ticket #22688 – Description

    initial v21  
    33* not from a client (channel_is_client in 0.3.1.1-alpha and later correctly identifies unauthenticated peers, which are clients and bridges).
    44
    5 For extra safety, we can check if the circuit is from a relay.
     5For HSv2, we should allow direct Tor2web client connections by default, but have a consensus parameter to turn them off. Direct service connections should always be refused,