[tor-bugs] #3095 [Tor Directory Authority]: obsolete tor clients hammering original v1 dir authorities
Tor Bug Tracker & Wiki
torproject-admin at torproject.org
Sun May 15 00:13:13 UTC 2011
#3095: obsolete tor clients hammering original v1 dir authorities
-------------------------------------+--------------------------------------
Reporter: arma | Owner: arma
Type: task | Status: assigned
Priority: critical | Milestone: Tor: unspecified
Component: Tor Directory Authority | Version:
Keywords: | Parent:
Points: | Actualpoints:
-------------------------------------+--------------------------------------
Comment(by rransom):
Replying to [comment:9 asn]:
> It should crash pre-d7be44f2380186c913be5a927d67b55e30e313c4 clients
like this:
{{{
routerparse.c:2828 get_next_token: Assertion eol >= (*s+16) failed;
aborting.
Aborted
}}}
When we fixed that assertion failure, we called the bugfix a ‘security
fix’. That makes triggering the assertion failure sound close enough to
something illegal under U.S. law that They '''will''' prosecute whoever
they can show was involved in it, and They '''will''' be allowed to keep
the jury from finding out why it was done, and They '''will''' be allowed
to lie to the jury about the law if They need to in order to throw someone
in prison to be raped for the rest of his/her/its life.
Would those Tor clients accept and understand a certificate valid for 1000
years?
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3095#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list