[tahoe-lafs-trac-stream] [Tahoe-LAFS] #2810: disable Foolscap 'gifts' (third-party references)

Tahoe-LAFS trac at tahoe-lafs.org
Mon Aug 29 01:36:16 UTC 2016


#2810: disable Foolscap 'gifts' (third-party references)
------------------------------+-----------------------
     Reporter:  warner        |      Owner:  warner
         Type:  task          |     Status:  closed
     Priority:  normal        |  Milestone:  1.12.0
    Component:  code-network  |    Version:  1.11.0
   Resolution:  fixed         |   Keywords:  anonymity
Launchpad Bug:                |
------------------------------+-----------------------
Changes (by Brian Warner <warner@…>):

 * status:  new => closed
 * resolution:   => fixed


Comment:

 In [changeset:"2d358f2e3557e98910766b748c9b8379b14ba63f/trunk"
 2d358f2/trunk]:
 {{{
 #!CommitTicketReference repository="trunk"
 revision="2d358f2e3557e98910766b748c9b8379b14ba63f"
 Disable foolscap "gifts"

 "gifts" are third-party references (where Alice sends Bob a reference to
 Carol, and Carol lives in a different Tub than either Alice or Bob).
 Tahoe doesn't currently use these, and they make it possible for e.g. a
 server to provoke a client into making a connection to an IP address of
 the server's choosing. If the client isn't configured otherwise, this
 would use raw TCP (revealing the client's IP address) even if the
 connection to the server used Tor.

 A connection policy of `tcp: tor` would block this, but it seems like a
 good idea to disable gifts entirely.

 closes ticket:2810
 }}}

--
Ticket URL: <https://tahoe-lafs.org/trac/tahoe-lafs/ticket/2810#comment:1>
Tahoe-LAFS <https://Tahoe-LAFS.org>
secure decentralized storage


More information about the tahoe-lafs-trac-stream mailing list