r11723@Kushana: nickm | 2006-12-28 13:52:48 -0500

Fix bug 364: check for whether popular hostnames (curently google, yahoo, mit, and slashdot) are getting wildcarded. If they are, we are probably behind a DNS server that is useless: change our exit policy to reject *:*. svn:r9199
author: Nick Mathewson <nickm@torproject.org> 2006-12-28 21:29:11 +0000
committer: Nick Mathewson <nickm@torproject.org> 2006-12-28 21:29:11 +0000
commit: e5f5b96ca6bc35d22478840600c2dfdf2778950f (patch)
tree: 1c6d406bffc1d2691ff125894146d191fe17ebd2 /ChangeLog
parent: 4cd302a1ebd44eafe5ac57062288436ab41b1220 (diff)
download: tor-e5f5b96ca6bc35d22478840600c2dfdf2778950f.tar
tor-e5f5b96ca6bc35d22478840600c2dfdf2778950f.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 982b6a48e..c638a5909 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -67,6 +67,9 @@ Changes in version 0.1.2.5-xxxx - 200?-??-??
       never believe reported remote addresses when they're internal.
     - Add client-side caching for reverse DNS lookups.
     - Add support to tor-resolve for reverse lookups and SOCKS5.
+    - We now check for the case when common DNS requests are going to
+      wildcarded addresses, and change our exit policy to reject *:* if
+      it's happening.  (Bug #364)
 
   o Security bugfixes:
     - Stop sending the HttpProxyAuthenticator string to directory
author	Nick Mathewson <nickm@torproject.org>	2006-12-28 21:29:11 +0000
committer	Nick Mathewson <nickm@torproject.org>	2006-12-28 21:29:11 +0000
commit	e5f5b96ca6bc35d22478840600c2dfdf2778950f (patch)
tree	1c6d406bffc1d2691ff125894146d191fe17ebd2 /ChangeLog
parent	4cd302a1ebd44eafe5ac57062288436ab41b1220 (diff)
download	tor-e5f5b96ca6bc35d22478840600c2dfdf2778950f.tar tor-e5f5b96ca6bc35d22478840600c2dfdf2778950f.tar.gz