#25423: Treat 'ExitRelay 0' as a reject-all policy
 Reporter:  atagar         |          Owner:  dmr
     Type:  defect         |         Status:  needs_review
 Priority:  Medium         |      Milestone:
Component:  Core Tor/Stem  |        Version:
 Severity:  Normal         |     Resolution:
 Keywords:                 |  Actual Points:
Parent ID:                 |         Points:
 Reviewer:  atagar         |        Sponsor:

Comment (by teor):

 Replying to [comment:6 dmr]:
 > ==== 4. Multiple configuration changes could cause our cache to be
 > As alluded to above, I had to edit the cache invalidation anyway for
 this change.
 > All of these torrc options, if changed, could invalidate our cache:
 (code snippet)
 > {{{
 >   'ExitRelay',
 >   'ExitPolicy',
 >   'ExitPolicyRejectPrivate',
 >   'ExitPolicyRejectLocalInterfaces',
 >   'IPv6Exit',
 > )
 > }}}
 > See the corresponding commit.

 The ExitPolicyRejectPrivate and ExitPolicyRejectLocalInterfaces also
 depend on:
 * Address
 * the addresses in any published or local *Port option
 * OutboundBindAddress*
 * possibly other options, which should be documented in the man page or
 the relevant function comments in tor. Maybe you'll have to read the code.

 Trying to find all the options that can change an exit policy could be
 difficult. tor doesn't guarantee the options that affect the exit policy,
 and these options have changed in previous versions. (Fortunately, those
 versions are now obsolete.)

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25423#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
tor-bugs mailing list

Reply via email to