Fix parse_virtual_addr_network minimum network size

author: Paolo Inglese <paolo.ingls@gmail.com> 2016-10-03 12:18:51 +0100
committer: Paolo Inglese <paolo.ingls@gmail.com> 2016-10-03 12:18:51 +0100
commit: ae4077916c94e9c15fa2800f51409ccb116bf63f (patch)
tree: fc2cfe29aa6db68d711e8447ee582fb2a048e5da /doc
parent: 14a604721091d3995c9905efe52e9f2fb789afaa (diff)
download: tor-ae4077916c94e9c15fa2800f51409ccb116bf63f.tar.gz
tor-ae4077916c94e9c15fa2800f51409ccb116bf63f.zip
1 files changed, 5 insertions, 2 deletions
diff --git a/doc/tor.1.txt b/doc/tor.1.txt
index 2e73b2784c..9f4eb31445 100644
--- a/doc/tor.1.txt
+++ b/doc/tor.1.txt
@@ -1275,8 +1275,11 @@ The following options are useful only for clients (that is, if
     "172.16.0.0/12" and change the IPv6 network to "[FC00::]/7".
     The default **VirtualAddrNetwork** address ranges on a
     properly configured machine will route to the loopback or link-local
-    interface. For
-    local use, no change to the default VirtualAddrNetwork setting is needed.
+    interface. The maximum number of bits for the network prefix is set to 104
+    for IPv6 and 16 for IPv4. However, a wider network - smaller prefix length
+    - is preferable since it reduces the chances for an attacker to guess the
+    used IP. For local use, no change to the default VirtualAddrNetwork setting
+    is needed.
 
 [[AllowNonRFC953Hostnames]] **AllowNonRFC953Hostnames** **0**|**1**::
     When this option is disabled, Tor blocks hostnames containing illegal
author	Paolo Inglese <paolo.ingls@gmail.com>	2016-10-03 12:18:51 +0100
committer	Paolo Inglese <paolo.ingls@gmail.com>	2016-10-03 12:18:51 +0100
commit	ae4077916c94e9c15fa2800f51409ccb116bf63f (patch)
tree	fc2cfe29aa6db68d711e8447ee582fb2a048e5da /doc
parent	14a604721091d3995c9905efe52e9f2fb789afaa (diff)
download	tor-ae4077916c94e9c15fa2800f51409ccb116bf63f.tar.gz tor-ae4077916c94e9c15fa2800f51409ccb116bf63f.zip