|
@@ -23,12 +23,14 @@ Changes in version 0.1.2.5-xxxx - 200?-??-??
|
|
|
options files.
|
|
|
- Reject *:563 (NTTPS) in the default exit policy. We already reject
|
|
|
NNTP by default, so this seems like a sensible addition.
|
|
|
- - Authorities do not recommend exits as guards if this would shift excess
|
|
|
- load to the exit nodes.
|
|
|
+ - Authorities do not recommend exits as guards if this would shift
|
|
|
+ excess load to the exit nodes.
|
|
|
- Avoid some inadvertent info leaks by making clients reject hostnames
|
|
|
- with invalid characters. Add an option to disable this behavior,
|
|
|
- in case somebody is running a private network with hosts called @, !,
|
|
|
- and #.
|
|
|
+ with invalid characters. Add an option "AllowNonRFC953Hostnames"
|
|
|
+ to disable this behavior, in case somebody is running a private
|
|
|
+ network with hosts called @, !, and #.
|
|
|
+ - Add a new address-spec.txt document to describe our special-case
|
|
|
+ addresses: .exit, .onion, and .noconnnect.
|
|
|
|
|
|
o Security bugfixes:
|
|
|
- Stop sending the HttpProxyAuthenticator string to directory
|
|
@@ -50,27 +52,23 @@ Changes in version 0.1.2.5-xxxx - 200?-??-??
|
|
|
after that. (May fix bug 326.)
|
|
|
|
|
|
o Minor bugfixes:
|
|
|
- - Fix a bug when a PF socket is first used. (Patch from Fabian
|
|
|
- Keil.)
|
|
|
+ - Fix a bug when a PF socket is first used. (Patch from Fabian Keil.)
|
|
|
- Fix an assert failure when a directory authority sets
|
|
|
AuthDirRejectUnlisted and then receives a descriptor from an
|
|
|
unlisted router (reported by seeess).
|
|
|
- Fix a bug on the Windows implementation of tor_mmap_file that
|
|
|
- would prevent the cached-routers file from ever loading. (reported by
|
|
|
- John Kimble.)
|
|
|
+ would prevent the cached-routers file from ever loading (reported
|
|
|
+ by John Kimble).
|
|
|
- Fix a bug in 0.1.2.2-alpha that prevented clients from asking
|
|
|
to resolve an address at a given exit node even when they ask for
|
|
|
it by name.
|
|
|
- Routers no longer ever list themselves in their "family" line,
|
|
|
even if configured to do so. This makes it easier to configure
|
|
|
family lists efficiently.
|
|
|
- - Remove an artificial (but quite high) restriction on expected
|
|
|
- bandwidth, so that accounting won't break once we all have gigabit
|
|
|
- connections to our homes.
|
|
|
- - When running as a server, don't fall back to 127.0.0.1 when
|
|
|
- no nameservers are configured in /etc/resolv.conf; instead, make
|
|
|
- the user fix resolv.conf or specify nameservers explicitly. (Resolves
|
|
|
- Bug 363.)
|
|
|
+ - When running as a server, don't fall back to 127.0.0.1 when no
|
|
|
+ nameservers are configured in /etc/resolv.conf; instead, make the
|
|
|
+ user fix resolv.conf or specify nameservers explicitly. (Resolves
|
|
|
+ bug 363.)
|
|
|
|
|
|
o Controller features:
|
|
|
- Have GETINFO dir/status/* work on hosts with DirPort disabled.
|