summaryrefslogtreecommitdiff
path: root/doc
diff options
context:
space:
mode:
authorNick Mathewson <nickm@torproject.org>2007-01-24 23:41:56 +0000
committerNick Mathewson <nickm@torproject.org>2007-01-24 23:41:56 +0000
commitb0b96c9091b7b825e7943532de1f869124f903a4 (patch)
tree173be252a7ea4edf4cb7e581b13b81f6357414bc /doc
parent5cd1f0680ec886c3bae7d443bb2a2809eb9fb301 (diff)
downloadtor-b0b96c9091b7b825e7943532de1f869124f903a4.tar.gz
tor-b0b96c9091b7b825e7943532de1f869124f903a4.zip
r11492@catbus: nickm | 2007-01-24 18:41:07 -0500
Try to be really explicit that ServerDNS options affect what your server does on behalf of clients, and nothing else. svn:r9398
Diffstat (limited to 'doc')
-rw-r--r--doc/tor.1.in23
1 files changed, 18 insertions, 5 deletions
diff --git a/doc/tor.1.in b/doc/tor.1.in
index d73f104d5d..24375da77b 100644
--- a/doc/tor.1.in
+++ b/doc/tor.1.in
@@ -715,8 +715,9 @@ next day. All times are local, and given in 24-hour time. (Defaults to
\fBServerDNSResolvConfFile \fR\fIfilename\fP
Overrides the default DNS configuration with the configuration in
\fIfilename\fP. The file format is the same as the standard Unix
-"\fBresolv.conf\fP" file (7). This option only affects name lookup for
-addresses requested by clients; and only takes effect if Tor was built with
+"\fBresolv.conf\fP" file (7). This option, like all other
+ServerDNS options, only affects name lookup that your server does on
+behalf of clients. Also, it only takes effect if Tor was built with
eventdns support. (Defaults to use the system DNS configuration.)
.LP
.TP
@@ -725,7 +726,9 @@ If set to \fB1\fP, then we will search for addresses in the local search
domain. For example, if this system is configured to believe it is in
"example.com", and a client tries to connect to "www", the client will be
connected to "www.example.com".
-This option only affects name lookup for addresses requested by clients.
+This option only affects name lookup that your server does on
+behalf of clients, and only takes effect if Tor was build with
+eventdns support.
(Defaults to "0".)
.LP
.TP
@@ -733,8 +736,10 @@ This option only affects name lookup for addresses requested by clients.
When this option is set to 1, we will test periodically to determine whether
our local nameservers have been configured to hijack failing DNS requests
(usually to an advertising site). If they are, we will attempt to correct
-this. This option only affects name lookup for addresses requested by
-clients; and only takes effect if Tor was built with eventdns support.
+this.
+This option only affects name lookup that your server does on
+behalf of clients, and only takes effect if Tor was build with
+eventdns support.
(Defaults to "1".)
.LP
.TP
@@ -742,13 +747,21 @@ clients; and only takes effect if Tor was built with eventdns support.
When we're detecting DNS hijacking, make sure that these \fIvalid\fP
addresses aren't getting redirected. If they are, then our DNS is
completely useless, and we'll reset our exit policy to "reject *:*".
+This option only affects name lookup that your server does on
+behalf of clients, and only takes effect if Tor was build with
+eventdns support.
(Defaults to "www.google.com, www.mit.edu, www.yahoo.com,
www.slashdot.org".)
+.LP
+.TP
\fBServerDNSAllowNonRFC953Hostnames \fR\fB0\fR|\fB1\fR\fP
When this option is disabled, Tor does not try to resolve hostnames
containing illegal characters (like @ and :) rather than sending them to an
exit node to be resolved. This helps trap accidental attempts to resolve
URLs and so on.
+This option only affects name lookup that your server does on
+behalf of clients, and only takes effect if Tor was build with
+eventdns support.
(Default: 0)
.SH DIRECTORY SERVER OPTIONS