diff options
| author | Roger Dingledine <arma@torproject.org> | 2009-08-07 19:26:41 -0400 |
|---|---|---|
| committer | Roger Dingledine <arma@torproject.org> | 2009-08-07 19:26:41 -0400 |
| commit | 3e4379c2e73bf458cf60c63df44a8d0ec761568c (patch) | |
| tree | 677787848283bef51a3d75df0cd4430111049b6d /src/or/or.h | |
| parent | 8196130f245ea4ccd893ad9b146a63f3fa5e68c1 (diff) | |
| download | tor-3e4379c2e73bf458cf60c63df44a8d0ec761568c.tar.gz tor-3e4379c2e73bf458cf60c63df44a8d0ec761568c.zip | |
Disable .exit notation unless AllowDotExit is 1.
Diffstat (limited to 'src/or/or.h')
| -rw-r--r-- | src/or/or.h | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/src/or/or.h b/src/or/or.h index 4f215d6448..253e89af85 100644 --- a/src/or/or.h +++ b/src/or/or.h @@ -2508,6 +2508,13 @@ typedef struct { * exit allows it, we use it. */ int AllowSingleHopCircuits; + /** If true, we convert "www.google.com.foo.exit" addresses on the + * socks/trans/natd ports into "www.google.com" addresses that + * exit from the node "foo". Disabled by default since attacking + * websites and exit relays can use it to manipulate your path + * selection. */ + int AllowDotExit; + /** If true, the user wants us to collect statistics on clients * requesting network statuses from us as directory. */ int DirReqStatistics; @@ -3133,7 +3140,7 @@ int hostname_is_noconnect_address(const char *address); typedef enum hostname_type_t { NORMAL_HOSTNAME, ONION_HOSTNAME, EXIT_HOSTNAME, BAD_HOSTNAME } hostname_type_t; -hostname_type_t parse_extended_hostname(char *address); +hostname_type_t parse_extended_hostname(char *address, int allowdotexit); #if defined(HAVE_NET_IF_H) && defined(HAVE_NET_PFVAR_H) int get_pf_socket(void); |