id summary keywords status owner type priority 2142 How to enhance WebUI default security against capability eavesdropping? websec confidentiality privacy wui webapi docs new amontero enhancement normal 925 Information leak to holders of a directory read cap, about whether each dir entry is writeable and the length of its write cap backward-compatibility privacy security assigned daira defect normal 870 Prevent socket hijacking on OSes that don't prevent it by default (Windows) security integrity confidentiality privacy windows foolscap twisted docs assigned davidsarah defect major 971 """Humanized failures"" should still have a traceback, hidden by default" error privacy anonymity assigned davidsarah enhancement major 1007 HTTP proxy support for node to node communication privacy anonymity firewall foolscap anti-censorship i2p new davidsarah enhancement minor 2018 padding to hide the size of plaintexts confidentiality privacy compression newcaps research new nejucomo enhancement normal 674 controlled access to your WUI wui confidentiality privacy anti-censorship websec new nobody enhancement major 309 add web page to Introducer, with client lists/counts introducer statistics privacy new somebody enhancement major 562 "add a ""censor"" command to filter out sensitive information from log files" privacy logging confidentiality new somebody defect major 563 anonymize IP addresses in log files privacy logging new somebody defect major 685 [needs test] Capability of interrupted downloads is logged in twistd.log logging memory privacy confidentiality test-needed new somebody defect major 879 Random-access download leaks information privacy docs new somebody defect minor 57 logging: compress/truncate/encode/decode/format for human readability and privacy logging privacy anonymity new warner enhancement minor 308 add directory traversal / deep-verify capability? vdrive newcaps verify repair privacy anonymity research new enhancement major 2335 clients shouldn't need to have persistent id anonymity privacy accounting foolscap new enhancement normal 2350 Persistent Introducer connections leak IP addresses even when idle privacy new enhancement normal 524 upgrade notification usability upgrade privacy new enhancement minor 823 WUI server should have a disallow-all robots.txt privacy new defect major 1008 Unhandled error conditions disclose detailed information wui security privacy anonymity logging error anti-censorship new defect major 1415 WUI is more useful than CLI security privacy capleak integrity confidentiality new defect normal 1904 filenames leak into log files from rename (and other web-API operations that take filenames) privacy logging easy new defect major 1907 Tor over Tahoe-LAFS mutable tor-protocol privacy rollback performance joke new enhancement normal 1946 consider removing some st_* fields from metadata privacy anonymity new defect normal