Opened 14 years ago

Last modified 8 years ago

#330 closed defect (Implemented)

DNS at exit should tolerate broken providers (aka "Earthlink")

Reported by: nickm Owned by: nickm
Priority: Low Milestone:
Component: Core Tor/Tor Version: 0.1.2.0-alpha-cvs
Severity: Keywords:
Cc: nickm Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

See โ€‹http://slashdot.org/article.pl?sid=06/09/03/1359221

Some ISPs have decided that implementing the internet correctly is not so worthwhile
as pointing people towards their advertising. Sadly, some Tor exit server operators
have signed up for these ISPs, and every time they attempt to resolve a nonexistant DNS
entry, they get the IP for the ISP's "oops! let's help you out!" site rather than the
correct error code.

Exit nodes could detect this pretty easily by periodically attempting to lookup a few
guaranteed-to-be-nonexistant domains, and seeing whether they resolve to anything. If
they do, the exit node could

a) switch to using the root nameservers
b) treat any IP returned by such test resolves as equivalent to a "no such domain" error.
c) warn the operator
d) ... ?

[Automatically added by flyspray2trac: Operating System: All]

Child Tickets

Change History (2)

comment:1 Changed 14 years ago by nickm

flyspray2trac: bug closed.
I've implemented approach "b" in r8440

comment:2 Changed 8 years ago by nickm

Component: Tor Relay โ†’ Tor
Note: See TracTickets for help on using tickets.