发布于 2016-08-24 23:47:34 | 163 次阅读 | 评论: 0 | 来源: 网友投递
Tor
Tor的全称是“The Onion Router”是第二代洋葱路由(onion routing)的一种实现,用户通过Tor可以在因特网上进行匿名交流,是一个匿名代理服务器。最初该项目由美国海军研究实验室赞助。2004年後期,Tor成为电子前哨基金会的一个项目。2005年后期,EFF不再赞助Tor项目,但他们继续维持Tor的官方网站。
Tor 0.2.8.7 发布了,该版本有重大的修复。Tor 0.2.8.7 修复了一个与 ReachableAddresses 相关的 bug。下面是详细的更新说明:
Changes in version 0.2.8.7 - 2016-08-24
Directory authority changes:
The "Tonga" bridge authority has been retired; the new bridge authority is "Bifroest". Closes tickets 19728 and 19690.
Major bugfixes (client, security):
Only use the ReachableAddresses option to restrict the first hop in a path. In earlier versions of 0.2.8.x, it would apply to every hop in the path, with a possible degradation in anonymity for anyone using an uncommon ReachableAddress setting. Fixes bug 19973; bugfix on 0.2.8.2-alpha.
Minor features (geoip):
Update geoip and geoip6 to the August 2 2016 Maxmind GeoLite2 Country database.
Minor bugfixes (compilation):
Remove an inappropriate "inline" in tortls.c that was causing warnings on older versions of GCC. Fixes bug 19903; bugfix on 0.2.8.1-alpha.
Minor bugfixes (fallback directories):
Avoid logging a NULL string pointer when loading fallback directory information. Fixes bug 19947; bugfix on 0.2.4.7-alpha and 0.2.8.1-alpha. Report and patch by "rubiate".
官方发行说明:https://blog.torproject.org/blog/tor-0287-released-important-fixes
Tor 0.2.9.2-alpha 发布了,该版本添加了一些新功能已经进行一些 bug 的修复。更新如下:
Changes in version 0.2.9.2-alpha - 2016-08-24
Directory authority changes (also in 0.2.8.7):
The "Tonga" bridge authority has been retired; the new bridge authority is "Bifroest". Closes tickets 19728 and 19690.
Major bugfixes (client, security, also in 0.2.8.7):
Only use the ReachableAddresses option to restrict the first hop in a path. In earlier versions of 0.2.8.x, it would apply to every hop in the path, with a possible degradation in anonymity for anyone using an uncommon ReachableAddress setting. Fixes bug 19973; bugfix on 0.2.8.2-alpha.
Major features (user interface):
Tor now supports the ability to declare options deprecated, so that we can recommend that people stop using them. Previously, this was done in an ad-hoc way. Closes ticket 19820.
Major bugfixes (directory downloads):
Avoid resetting download status for consensuses hourly, since we already have another, smarter retry mechanism. Fixes bug 8625; bugfix on 0.2.0.9-alpha.
Minor features (config):
Warn users when descriptor and port addresses are inconsistent. Mitigates bug13953; patch by teor.
Minor features (geoip):
Update geoip and geoip6 to the August 2 2016 Maxmind GeoLite2 Country database.
Minor features (user interface):
There is a new --list-deprecated-options command-line option to list all of the deprecated options. Implemented as part of ticket 19820.
Minor bugfixes (code style):
Fix an integer signedness conversion issue in the case conversion tables. Fixes bug19168; bugfix on 0.2.1.11-alpha.
Minor bugfixes (compilation):
Build correctly on versions of libevent2 without support for evutil_secure_rng_add_bytes(). Fixes bug 19904; bugfix on 0.2.5.4-alpha.
Fix a compilation warning on GCC versions before 4.6. Our ENABLE_GCC_WARNING macro used the word "warning" as an argument, when it is also required as an argument to the compiler pragma. Fixes bug 19901; bugfix on 0.2.9.1-alpha.
Minor bugfixes (compilation, also in 0.2.8.7):
Remove an inappropriate "inline" in tortls.c that was causing warnings on older versions of GCC. Fixes bug 19903; bugfix on 0.2.8.1-alpha.
Minor bugfixes (fallback directories, also in 0.2.8.7):
Avoid logging a NULL string pointer when loading fallback directory information. Fixes bug 19947; bugfix on 0.2.4.7-alpha and 0.2.8.1-alpha. Report and patch by "rubiate".
Minor bugfixes (logging):
Log a more accurate message when we fail to dump a microdescriptor. Fixes bug17758; bugfix on 0.2.2.8-alpha. Patch from Daniel Pinto.
Minor bugfixes (memory leak):
Fix a series of slow memory leaks related to parsing torrc files and options. Fixes bug19466; bugfix on 0.2.1.6-alpha.
Deprecated features:
A number of DNS-cache-related sub-options for client ports are now deprecated for security reasons, and may be removed in a future version of Tor. (We believe that client-side DNS cacheing is a bad idea for anonymity, and you should not turn it on.) The options are: CacheDNS, CacheIPv4DNS, CacheIPv6DNS, UseDNSCache, UseIPv4Cache, and UseIPv6Cache.
A number of options are deprecated for security reasons, and may be removed in a future version of Tor. The options are: AllowDotExit, AllowInvalidNodes, AllowSingleHopCircuits, AllowSingleHopExits, ClientDNSRejectInternalAddresses, CloseHSClientCircuitsImmediatelyOnTimeout, CloseHSServiceRendCircuitsImmediatelyOnTimeout, ExcludeSingleHopRelays, FastFirstHopPK, TLSECGroup, UseNTorHandshake, and WarnUnsafeSocks.
The *ListenAddress options are now deprecated as unnecessary: the corresponding *Port options should be used instead. These options may someday be removed. The affected options are: ControlListenAddress, DNSListenAddress, DirListenAddress, NATDListenAddress, ORListenAddress, SocksListenAddress, and TransListenAddress.
Documentation:
Correct the IPv6 syntax in our documentation for the VirtualAddrNetworkIPv6 torrc option. Closes ticket 19743.
Removed code:
We no longer include the (dead, deprecated) bufferevent code in Tor. Closes ticket19450. Based on a patch from U+039b.
官方发行说明:https://blog.torproject.org/blog/tor-0292-alpha-released-important-fixes