[tor-relays] Fwd: Upcoming Tor security releases to fix a denial-of-service issue
-- Forwarded message - From: Nick Mathewson Date: Mon, Mar 16, 2020 at 1:25 PM Subject: Upcoming Tor security releases to fix a denial-of-service issue To: Hello! Some time this week, we currently plan to put out a set of security updates for all supported versions of Tor. These releases will fix a pair of denial-of-service bugs: one that we are classifying at "low" severity, and one that we are classifying at "high" severity. Our recommendation will be for everybody, including relays and clients, to upgrade once packages are available for their platforms. Although these vulnerabilities are "only" denial-of-service issues, any denial-of-service attack against Tor could be leveraged by an attacker to aid in a traffic analysis attack. To the best of our knowledge, these vulnerabilities are not being exploited in the wild. Currently supported release series are 0.3.5, 0.4.1, 0.4.2, and 0.4.3 (alpha). If you have not yet upgraded to one of those, the time to do so is soon. For our policy and process for handing security issues, please see: https://trac.torproject.org/projects/tor/wiki/org/teams/NetworkTeam/SecurityPolicy best wishes, -- Nick ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Consensus Weight Dropping/Authority Issues?
Hi all, > On 16. Mar 2020, at 07:43, teor wrote: >> On 7 Jan 2020, at 22:57, John Ricketts wrote: >> >> I have been watching the consensus weight and bandwidth of all of my 50 exit >> nodes drop consistently over the past few months. I have not made any >> hardware changes in my data center and actual customers have not complained >> about any performance issues. >> >> Operating systems and Tor version are up to date. I'm dedicating a >> significant portion of bandwidth to these nodes - 10gbit/sec. >> >> Am I having issues with the bandwidth authorities? >> >> I'm growing frustrated with my performance to resources ratio, I should be >> doing far better than this. > > Did you ever find an answer here? > > What have you analysed? > Have you tried any config changes? > > Can you tell us which directory authorities are measuring your relays lower > than they were before? > > The most likely scenarios are: > * Routing changes between your relays and the bandwidth authorities > * The Torflow to sbws transition > * Did you upgrade your tor version? > Most of the network upgraded to tor 0.4.1 and 0.4.2 recently: > https://metrics.torproject.org/versions.html?start=2019-09-01=2020-03-16 > > Did the consensus weight drop first, or did the observed bandwidth drop first? > > You've probably read this wiki page before, but just in case: > https://trac.torproject.org/projects/tor/wiki/doc/MyRelayIsSlow#FindingOutwhatisLimitingaRelay > > T Also I want to take this opportunity to say I'm desperately trying to resurrect the old-style bw scanner on gabelmoo, but it isn't going too well. Sorry if this outage is causing any kind of issues for anyone :( Cheers Sebastian ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
Re: [tor-relays] Consensus Weight Dropping/Authority Issues?
Hi John, > On 7 Jan 2020, at 22:57, John Ricketts wrote: > > I have been watching the consensus weight and bandwidth of all of my 50 exit > nodes drop consistently over the past few months. I have not made any > hardware changes in my data center and actual customers have not complained > about any performance issues. > > Operating systems and Tor version are up to date. I'm dedicating a > significant portion of bandwidth to these nodes - 10gbit/sec. > > Am I having issues with the bandwidth authorities? > > I'm growing frustrated with my performance to resources ratio, I should be > doing far better than this. Did you ever find an answer here? What have you analysed? Have you tried any config changes? Can you tell us which directory authorities are measuring your relays lower than they were before? The most likely scenarios are: * Routing changes between your relays and the bandwidth authorities * The Torflow to sbws transition * Did you upgrade your tor version? Most of the network upgraded to tor 0.4.1 and 0.4.2 recently: https://metrics.torproject.org/versions.html?start=2019-09-01=2020-03-16 Did the consensus weight drop first, or did the observed bandwidth drop first? You've probably read this wiki page before, but just in case: https://trac.torproject.org/projects/tor/wiki/doc/MyRelayIsSlow#FindingOutwhatisLimitingaRelay T signature.asc Description: Message signed with OpenPGP ___ tor-relays mailing list tor-relays@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays