[tor-bugs] #8106 [Tor]: Make .onion addresses harder to harvest by directory servers

Fri Mar 1 15:39:57 UTC 2013

#8106: Make .onion addresses harder to harvest by directory servers
 Reporter:  asn              |          Owner:                    
     Type:  defect           |         Status:  new               
 Priority:  major            |      Milestone:  Tor: 0.2.5.x-final
Component:  Tor              |        Version:                    
 Keywords:  SponsorZ tor-hs  |         Parent:                    
   Points:                   |   Actualpoints:                    

Comment(by asn):

 Replying to [comment:4 asn]:
 > A problem pointed out by Nick is that this turns HSDir into cloud
 storage servers, since anyone can upload anything to it.

 I guess we can make this a bit less painful, by partially encrypting the
 descriptor. Basically, by encrypting all the fields of the descriptor, but
 leaving the headers intact. And of course by enforcing a size limit.

 The current v2 descriptor has encrypted fields that can be used to store
 arbitrary information anyway (like the `introduction-points` encrypted-
 string field).

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8106#comment:5>
