[tor-bugs] #28741 [Core Tor/sbws]: sbws should send scanner metadata as part of every HTTP request

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Dec 12 13:21:42 UTC 2018


#28741: sbws should send scanner metadata as part of every HTTP request
---------------------------+-----------------------------------
 Reporter:  teor           |          Owner:  (none)
     Type:  defect         |         Status:  new
 Priority:  Medium         |      Milestone:  sbws: 1.0.x-final
Component:  Core Tor/sbws  |        Version:
 Severity:  Normal         |     Resolution:
 Keywords:                 |  Actual Points:
Parent ID:                 |         Points:
 Reviewer:                 |        Sponsor:
---------------------------+-----------------------------------

Comment (by juga):

 Replying to [comment:2 teor]:

 > sbws doesn't guarantee any anonymity, and discovering rogue scanners is
 more important than the risk of malicious servers using the IP address.

 Thinking more this, i'm not totally convinced. If we find rogue scanners,
 are we going to try to contact them?.
 I'm also not sure if that might be a problem on the server side due data
 privacy laws.
 What about creating a random unique identifier the first time that it's
 saved locally so the scanner can always send the same?.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28741#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list