From de73e3692a6d83774027ac9d29e1ec8608076385 Mon Sep 17 00:00:00 2001 From: Roger Dingledine Date: Mon, 26 Mar 2012 22:15:02 -0400 Subject: [PATCH] merge in the safecookie changelog entry too --- ChangeLog | 7 +++++++ changes/safecookie | 9 --------- 2 files changed, 7 insertions(+), 9 deletions(-) delete mode 100644 changes/safecookie diff --git a/ChangeLog b/ChangeLog index d6cc6d646a..52c73451ef 100644 --- a/ChangeLog +++ b/ChangeLog @@ -7,6 +7,13 @@ Changes in version 0.2.3.13-alpha - 2012-03-26 - Change IP address for maatuska (v3 directory authority). o Security fixes: + - Provide controllers with a safer way to implement the cookie + authentication mechanism. With the old method, if another locally + running program could convince a controller that it was the Tor + process, then that program could trick the contoller into telling + it the contents of an arbitrary 32-byte file. The new "SAFECOOKIE" + authentication method uses a challenge-response approach to prevent + this attack. Fixes bug 5185, implements proposal 193. - Never use a bridge or a controller-supplied node as an exit, even if its exit policy allows it. Found by wanoskarnet. Fixes bug 5342. Bugfix on 0.1.1.15-rc (for controller-purpose descriptors) diff --git a/changes/safecookie b/changes/safecookie deleted file mode 100644 index fd7d7af2b0..0000000000 --- a/changes/safecookie +++ /dev/null @@ -1,9 +0,0 @@ - o Security Features: - - Provide controllers with a safer way to implement the cookie - authentication mechanism. With the old method, if another locally - running program could convince a controller that it was the Tor - process, then that program could trick the contoller into - telling it the contents of an arbitrary 32-byte file. The new - "SAFECOOKIE" authentication method uses a challenge-response - approach to prevent this. Fixes bug 5185, implements proposal 193. -