diff options
| author | Roger Dingledine <arma@torproject.org> | 2012-03-26 22:15:02 -0400 |
|---|---|---|
| committer | Roger Dingledine <arma@torproject.org> | 2012-03-26 22:15:02 -0400 |
| commit | de73e3692a6d83774027ac9d29e1ec8608076385 (patch) | |
| tree | 28eaa94bab8ff01f88efce53305a4f803c92cd38 /changes | |
| parent | 65bf007a77be579a05e2bbc4fdcdea3741439f3e (diff) | |
| download | tor-de73e3692a6d83774027ac9d29e1ec8608076385.tar.gz tor-de73e3692a6d83774027ac9d29e1ec8608076385.zip | |
merge in the safecookie changelog entry tootor-0.2.3.13-alpha
Diffstat (limited to 'changes')
| -rw-r--r-- | changes/safecookie | 9 |
1 files changed, 0 insertions, 9 deletions
diff --git a/changes/safecookie b/changes/safecookie deleted file mode 100644 index fd7d7af2b0..0000000000 --- a/changes/safecookie +++ /dev/null @@ -1,9 +0,0 @@ - o Security Features: - - Provide controllers with a safer way to implement the cookie - authentication mechanism. With the old method, if another locally - running program could convince a controller that it was the Tor - process, then that program could trick the contoller into - telling it the contents of an arbitrary 32-byte file. The new - "SAFECOOKIE" authentication method uses a challenge-response - approach to prevent this. Fixes bug 5185, implements proposal 193. - |