Opened 7 years ago

Closed 7 years ago

Last modified 7 years ago

#6789 closed enhancement (implemented)

Directory authorities should stop listing Tor <= 0.2.1 -- maybe more

Reported by: nickm Owned by:
Priority: Medium Milestone: Tor: 0.2.4.x-final
Component: Core Tor/Tor Version:
Severity: Keywords: 023-da tor-auth
Cc: ln5 Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

We've not been doing security updates for 0.2.1 in a while. It looks like there are still a handful of such nodes in the directories, though. They seem to make up about half a percent of the network bandwidth.

Other versions that we allow include 0.2.2.21-alpha onward. But right now, versions before 0.2.2.35 add only another half-a-percent to the bandwidth.

If we count routers and not bandwidth, omitting these versions would remove a bigger fraction: 1.5% of the routers from 0.2.1, and 2.5% with 0.2.2 versions <= 0.2.2.34.

If we define 0.2.2.35 as our minimal 0.2.2 release, we should probably also reject 0.2.3 versions before 0.2.3.10-alpha. They're a miniscule fraction of the network too.

Child Tickets

Change History (9)

comment:1 Changed 7 years ago by nickm

Keywords: 023-da added
Status: newneeds_review

Please see branch "ticket6789" in my public repo.

comment:2 Changed 7 years ago by ln5

Cc: ln5 added

comment:3 Changed 7 years ago by nickm

Also review branch remove_old_ver_checks -- once we have killed those versions, we no longer want to question whether servers have them.

comment:4 Changed 7 years ago by arma

Ok. Those versions aren't in the RecommendedVersions list, so I'm fine cutting them out of the network.

We should mail the contactinfo for the ones who have it, asking them to upgrade. I'll look into doing that now.

comment:5 Changed 7 years ago by nickm

Resolution: implemented
Status: needs_reviewclosed

ok. I'm going to be bold and merge bug6789. if weasel or anybody doesn't think it was a good idea, it can always be backed out in or after the next version.

Once authorities are no longer including these versions, we can apply remove_old_ver_checks.

comment:6 Changed 7 years ago by nickm

Resolution: implemented
Status: closedreopened

comment:7 Changed 7 years ago by nickm

Resolution: implemented
Status: reopenedclosed

I was going to leave this open for remove_old_ver_checks, but on a second examination, it appears that the newest version we had a check for which that branch was removing was 0.2.1.1-alpha. That version was already rejected before ticket6789, so we can merge remove_old_ver_checks right now.

comment:8 Changed 7 years ago by nickm

Keywords: tor-auth added

comment:9 Changed 7 years ago by nickm

Component: Tor Directory AuthorityTor
Note: See TracTickets for help on using tickets.