tor/bug14917 at fcec1f338110d17dd23668558a87f0f5ea8a8ee1 - tor - Git with a cup of Datura seeds

nihilist/tor

mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-28 06:13:31 +01:00

David Goulet 07b3028db7 Prohibit the use of one entry node with an HS

In a nutshell, since a circuit can not exit at its entry point, it's very
easy for an attacker to find the hidden service guard if only one EntryNodes
is specified since for that guard, the HS will refuse to build a rendezvous
circuit to it.

For now, the best solution is to stop tor to allow a single EntryNodes for
an hidden service.

Fixes #14917

Signed-off-by: David Goulet <dgoulet@ev0ke.net>

2015-09-02 10:47:20 -04:00

6 lines

279 B

Plaintext

Raw Blame History

   o Major bugfix
     - For an hidden service, it is now prohibited to use one single
       EntryNodes to avoid a very easy guard discovery attack. For more
       details, see the ticket description here:
       https://trac.torproject.org/projects/tor/ticket/14917. Fixes #14917.