[tahoe-lafs-trac-stream] [Tahoe-LAFS] #2810: disable Foolscap 'gifts' (third-party references)
Tahoe-LAFS
trac at tahoe-lafs.org
Mon Aug 29 01:36:16 UTC 2016
#2810: disable Foolscap 'gifts' (third-party references)
------------------------------+-----------------------
Reporter: warner | Owner: warner
Type: task | Status: closed
Priority: normal | Milestone: 1.12.0
Component: code-network | Version: 1.11.0
Resolution: fixed | Keywords: anonymity
Launchpad Bug: |
------------------------------+-----------------------
Changes (by Brian Warner <warner@…>):
* status: new => closed
* resolution: => fixed
Comment:
In [changeset:"2d358f2e3557e98910766b748c9b8379b14ba63f/trunk"
2d358f2/trunk]:
{{{
#!CommitTicketReference repository="trunk"
revision="2d358f2e3557e98910766b748c9b8379b14ba63f"
Disable foolscap "gifts"
"gifts" are third-party references (where Alice sends Bob a reference to
Carol, and Carol lives in a different Tub than either Alice or Bob).
Tahoe doesn't currently use these, and they make it possible for e.g. a
server to provoke a client into making a connection to an IP address of
the server's choosing. If the client isn't configured otherwise, this
would use raw TCP (revealing the client's IP address) even if the
connection to the server used Tor.
A connection policy of `tcp: tor` would block this, but it seems like a
good idea to disable gifts entirely.
closes ticket:2810
}}}
--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/2810#comment:1>
Tahoe-LAFS <https://Tahoe-LAFS.org>
secure decentralized storage
More information about the tahoe-lafs-trac-stream
mailing list