Skip to main content
Explore
Sign in
Explore
Snippets Groups Projects

safelogging should cover hidden service name and intro-points too

  • View options
    • Closed (moved) created by Roger Dingledine
    Archived safelogging should cover hidden service name and intro-points too
    • View options

    • In log messages about a hidden service we operate, we don't replace the hidden service name with [scrubbed].

    Historically, this was considered fine, because you have your hostname and private_key files on disk already.

    But if the user puts his $datadir on encrypted storage, and the logs aren't on encrypted storage, then the logs could be the weak link.

    Attributes

    Assignees

    Robert Ransom

    Labels

    component core tor/tor intro milestone Tor: unspecified owner rransom points 5 priority medium severity normal status assigned tor-hs type defect

    Milestone

    Tor: unspecified

    Dates

    Start: None

    Due: None

    Time tracking

    Spent 0h
    Estimate 40h
    To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

    Activity

    • All activity
    • Comments only
    • History only
    • Newest first
    • Oldest first