Merge branch 'vanguards-lite-dev-rebased'

author: George Kadianakis <desnacked@riseup.net> 2021-07-28 12:00:37 +0300
committer: George Kadianakis <desnacked@riseup.net> 2021-07-28 12:00:37 +0300
commit: 4f68fe3e6c09881af46bfedadfdcd892b026adf3 (patch)
tree: 08e21b33264b85577b49822eab50525254ea1fc8 /changes
parent: a9b287fbcc45ac5825599d42b3c024d4b8a88782 (diff)
parent: 43a725797bf1fcd596e2d664bc975751ad2588d2 (diff)
download: tor-4f68fe3e6c09881af46bfedadfdcd892b026adf3.tar.gz
tor-4f68fe3e6c09881af46bfedadfdcd892b026adf3.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/changes/ticket40363 b/changes/ticket40363
new file mode 100644
index 0000000000..713f943020
--- /dev/null
+++ b/changes/ticket40363
@@ -0,0 +1,9 @@
+  o Major features (Proposal 332, onion services, guard selection algorithm):
+    - Clients and onion services now choose four long-lived "layer 2" guard
+      relays for use as the middle hop in all onion circuits.  These relays are
+      kept in place for a randomized duration averaging 1 week each. This
+      mitigates guard discovery attacks against clients and short-lived onion
+      services such as OnionShare. Long-lived onion services that need high
+      security should still use the Vanguards addon
+      (https://github.com/mikeperry-tor/vanguards). Closes ticket 40363;
+      implements proposal 333.
author	George Kadianakis <desnacked@riseup.net>	2021-07-28 12:00:37 +0300
committer	George Kadianakis <desnacked@riseup.net>	2021-07-28 12:00:37 +0300
commit	4f68fe3e6c09881af46bfedadfdcd892b026adf3 (patch)
tree	08e21b33264b85577b49822eab50525254ea1fc8 /changes
parent	a9b287fbcc45ac5825599d42b3c024d4b8a88782 (diff)
parent	43a725797bf1fcd596e2d664bc975751ad2588d2 (diff)
download	tor-4f68fe3e6c09881af46bfedadfdcd892b026adf3.tar.gz tor-4f68fe3e6c09881af46bfedadfdcd892b026adf3.zip