Commit Graph

5513 Commits

Author SHA1 Message Date
Roger Dingledine
67a77f17ca i'm not sure what man-in-the-middle attacks we were worried about,
but i agree that we don't need to worry about them for rendezvousing.
what we really meant was collision attacks. i think?


svn:r5909
2006-02-04 20:07:45 +00:00
Roger Dingledine
d222678ea5 link to goodell's tor detector script rather than the
traditional ip-checking sites.


svn:r5908
2006-02-04 19:53:05 +00:00
Roger Dingledine
f0fe4feb00 i hear sometimes the privoxy icon is blue.
svn:r5907
2006-02-04 19:47:14 +00:00
Roger Dingledine
640c555f02 Fix a major load balance bug: we were round-robining in 16 KB chunks, and
servers with bandwidthrate of 20 KB, while downloading a 600 KB directory,
would starve their other connections. Now we try to be a bit more fair.


svn:r5906
2006-02-04 08:58:51 +00:00
Roger Dingledine
032a01ef64 just because you support the feature does not mean that you
should put an example in the sample torrc file.

the debug-info lines were causing some people to think that
was a smart loglevel to use, and it also always isn't.


svn:r5905
2006-02-04 07:45:40 +00:00
Roger Dingledine
96e350c16c minor fix to control spec
svn:r5904
2006-02-04 00:26:12 +00:00
Peter Palfrader
94fb3f06b3 Fix compiler warning on 64 bit archs
svn:r5903
2006-02-03 22:26:43 +00:00
Nick Mathewson
a69b96af02 Be sure to restore LDFLAGS from LDFLAGS, not from LIBS.
svn:r5902
2006-02-03 19:34:09 +00:00
Peter Palfrader
390bbb0a0c Try to make tor work better through squid: Limit number of descriptors we fetch
to 96 (was 128 previously).

We limit this number even when we do not have a http proxy explicitly
configured as some people mistakenly believe transparent proxies are a neat
idea.


svn:r5901
2006-02-03 15:17:48 +00:00
Roger Dingledine
a1dd751f30 when we fail to bind a listener, try to provide a more useful log msg.
svn:r5900
2006-02-03 12:26:10 +00:00
Roger Dingledine
6f579deff4 check for EADDRINUSE in a cross-platform way (unless i'm wrong)
svn:r5899
2006-02-03 12:25:46 +00:00
Roger Dingledine
1800fbe486 don't warn when we receive a 503 from a dirserver/cache -- this
will pave the way for them being able to tell us to screw off
if they're busy.


svn:r5898
2006-02-03 12:08:31 +00:00
Roger Dingledine
0fadf0aad6 Fix bug 225: now "attachstream 0" treats conn like it just connected,
doing address remapping, handling .exit and .onion idioms, and so on.

Now we are more uniform in making sure that the controller hears about
all new connections, and making sure it hears when they close.


svn:r5897
2006-02-03 11:37:19 +00:00
Roger Dingledine
418dc7b16e I believe this resolves bug 234, the mysterious crash on 0.1.1.9
and later servers. I'm not sure yet, but better to have it in CVS
while we speculate that it's the fix.


svn:r5895
2006-02-02 10:10:07 +00:00
Andrew Lewman
e10ff0c23c Fixed BuildRequire for libevent-devel
svn:r5894
2006-02-02 03:21:13 +00:00
Andrew Lewman
c42f0da3d2 Added libevent 1.1a requirement for rpmbuilding now that many repos
carry libevent 1.1a as of 2006-01-12


svn:r5893
2006-02-02 02:43:03 +00:00
Roger Dingledine
af2c34ed50 three more todo items
svn:r5892
2006-02-01 10:55:59 +00:00
Roger Dingledine
864c81d668 more things to think about; and the details of two incentive schemes.
svn:r5891
2006-02-01 10:50:23 +00:00
Roger Dingledine
a07acfcd61 add another related issue to think about
svn:r5890
2006-02-01 06:45:15 +00:00
Roger Dingledine
9ff4b2cf97 document ExitPolicyRejectPrivate in man page
svn:r5889
2006-02-01 05:22:11 +00:00
Roger Dingledine
92ef9e37e7 Add a new config option ExitPolicyRejectPrivate which defaults to 1.
This means all exit policies will begin with rejecting private addresses,
unless the server operator explicitly turns it off.

Also, make our code to remove redundancies in the exit policy smarter,
so it can detect "reject foo, reject bar, reject *" patterns.

Lastly, we can get rid of the "exit policy implicitly accepts" code,
since we make everything more explicit now.


svn:r5888
2006-02-01 03:53:52 +00:00
Roger Dingledine
bdba6e42dc avoid a minor confusing log message
svn:r5887
2006-02-01 03:05:52 +00:00
Peter Palfrader
bf514e5dc5 Try to fix policy_includes_addr_mask_implicitly()
svn:r5886
2006-02-01 02:52:55 +00:00
Peter Palfrader
61ea27620a Also catch 0/8 in exit_policy_implicitly_allows_local_networks()
svn:r5885
2006-02-01 02:31:27 +00:00
Roger Dingledine
686508a04a don't try to upload hidden service descriptors until we have
established a circuit.


svn:r5884
2006-02-01 02:19:46 +00:00
Peter Palfrader
dbf2e10460 Apply Matt Ghali's --with-syslog-facility patch
svn:r5883
2006-02-01 02:15:44 +00:00
Roger Dingledine
415544bb75 start to put the incentives brainstorming down in text.
needs lots more work.


svn:r5882
2006-01-31 09:10:13 +00:00
Roger Dingledine
e05d4e45d2 provide a more useful warn message when our onion queue
gets full.


svn:r5881
2006-01-31 08:17:00 +00:00
Roger Dingledine
8fc44169e5 only start testing reachability once we've established a circuit.
this will make startup on dirservers less noisy.
it may also break things in subtle ways.


svn:r5878
2006-01-29 01:11:41 +00:00
Roger Dingledine
05cf1e0202 more bugs that arma needs to investigate
svn:r5877
2006-01-28 22:12:29 +00:00
Roger Dingledine
dfa23061a7 fix the man page: hardwareaccel is off by default.
svn:r5876
2006-01-28 22:09:57 +00:00
Roger Dingledine
0d0ce4b1ef more bugs and missing features
svn:r5875
2006-01-28 09:05:48 +00:00
Roger Dingledine
f8b9a8d457 bump the default bandwidthrate to 3 MB, and burst to 6 MB
svn:r5874
2006-01-28 08:28:15 +00:00
Nick Mathewson
d4393daf10 Make OpenSSL configure.in logic match libevent configure.in logic.
svn:r5873
2006-01-27 19:38:16 +00:00
Nick Mathewson
0e8072a8e7 More improvements on libevent hunting: give a good error when no libevent linkable is found at all; also try using -R to link libevent where needed.
svn:r5872
2006-01-27 18:39:40 +00:00
Nick Mathewson
2379bc557c Minor cleanup of last patch: check system before prefix, so we dont believe that libevent is /usr/local/lib when it is in /usr.
svn:r5871
2006-01-27 01:47:43 +00:00
Nick Mathewson
b28dbb5b99 Implement --with-libevent-dir. Improve libevent search techniques. May be buggy as my old apartment.
svn:r5870
2006-01-27 00:16:06 +00:00
Roger Dingledine
35f91db15f a slightly more useful message when you get a sighup
svn:r5869
2006-01-26 19:11:06 +00:00
Peter Palfrader
20183cf559 Lasse and Paul's attack has a CVE: CVE-2006-0414
svn:r5868
2006-01-25 20:51:04 +00:00
Peter Palfrader
de9b59a2ef Mention that 0.1.1.11-alpha-1 closes #349283
svn:r5867
2006-01-25 12:30:08 +00:00
Peter Palfrader
17e0d9f238 The reading-arbitrary-memory bug in June had a CVE too
svn:r5866
2006-01-25 12:26:21 +00:00
Peter Palfrader
ef8787b7ee Add CVE number for the crypto handshake bug from August to changelogs
svn:r5865
2006-01-25 12:19:23 +00:00
Roger Dingledine
a9eb35dc8f nick likes todo items, i hear
svn:r5864
2006-01-24 05:55:33 +00:00
Roger Dingledine
4cc1ab0065 slip in some more todo items
svn:r5863
2006-01-24 04:31:46 +00:00
Roger Dingledine
8da3bff6e5 ha ha, we never bumped the os x stable version number.
svn:r5862
2006-01-24 04:23:44 +00:00
Nick Mathewson
bfe285be61 Add a missing printf arg
svn:r5861
2006-01-24 04:01:13 +00:00
Roger Dingledine
29e58a839d more 0.1.1.x todo items, plus a 0.1.2.x roadmap
svn:r5860
2006-01-24 03:57:38 +00:00
Roger Dingledine
2eabf190e9 make it louder when we're running an unrecommended version.
also, we need to tell them what versions *are* recommended.
i'll add that to the todo.


svn:r5859
2006-01-24 03:45:58 +00:00
Roger Dingledine
52737a5e6d dir-spec cleanups
svn:r5858
2006-01-24 00:48:42 +00:00
Nick Mathewson
75ca3e5063 Document "guard" flag. Also document subtle shift in meaning of "stable" and "fast" to mean "good for stable circs" and "good for fast circs", rather than "stable server" or "fast server".
svn:r5857
2006-01-24 00:32:36 +00:00