Opened 13 years ago

Last modified 7 years ago

#330 closed defect (Implemented)

DNS at exit should tolerate broken providers (aka "Earthlink")

Reported by: nickm Owned by: nickm
Priority: Low Milestone:
Component: Core Tor/Tor Version: 0.1.2.0-alpha-cvs
Severity: Keywords:
Cc: nickm Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

See http://slashdot.org/article.pl?sid=06/09/03/1359221

Some ISPs have decided that implementing the internet correctly is not so worthwhile
as pointing people towards their advertising. Sadly, some Tor exit server operators
have signed up for these ISPs, and every time they attempt to resolve a nonexistant DNS
entry, they get the IP for the ISP's "oops! let's help you out!" site rather than the
correct error code.

Exit nodes could detect this pretty easily by periodically attempting to lookup a few
guaranteed-to-be-nonexistant domains, and seeing whether they resolve to anything. If
they do, the exit node could

a) switch to using the root nameservers
b) treat any IP returned by such test resolves as equivalent to a "no such domain" error.
c) warn the operator
d) ... ?

[Automatically added by flyspray2trac: Operating System: All]

Child Tickets

Change History (2)

comment:1 Changed 13 years ago by nickm

flyspray2trac: bug closed.
I've implemented approach "b" in r8440

comment:2 Changed 7 years ago by nickm

Component: Tor RelayTor
Note: See TracTickets for help on using tickets.