View Issue Details

IDProjectCategoryView StatusLast Update
0006303Kali Linux[All Projects] Tool Upgrade Requestpublic2020-05-06 09:49
Reporterd34db33f-1007 Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status assignedResolutionopen 
Product Versionkali-dev 
Target VersionFixed in Version 
Summary0006303: patched Tor version
Descriptionas from version 4.2.0 official Tor binary comes with "less secure" features disabled:

"They were first marked as deprecated in 0.2.9.2-alpha and have now been removed. The previous default behavior is now always chosen; the previous (less secure) non-default behavior is now unavailable."

these "less secure" features includes "ExcludeSingleHopRelays" option which is commonly used by most Kali Linux users for bruteforce attacks on modern and secure services while Bug Hunting or penetration testing. actually this option is used in even more scenarios. by default this option reduces traffic route to just only one exit node. in couple with "MaxCircuitDirtiness" option one can route requests fast, bit anonymously and avoid being banned by ip address cuz "MaxCircuitDirtiness" options changes exit nodes in every chosen seconds count ends. "MaxCircuitDirtiness" option isn't disabled by default btw.

in fact these "less secure" features includes "AllowInvalidNodes, AllowSingleHopCircuits, AllowSingleHopExits, ExcludeSingleHopRelays, FastFirstHopPK, TLSECGroup, WarnUnsafeSocks" as much as all this options.

if the Kali Linux shippers could add patched Tor binary version to theirs repositories and provide community at least with "ExcludeSingleHopRelays" option working well it would make life much easier for a big bunch of people.

here is key commit in Tor Project that i've already found: https://github.com/torproject/tor/commit/09bc858dd54101e645b31bf32fe463b73c38add2
other commits can be found by "Obsolete" search key.
thank you.

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2020-04-18 07:36 d34db33f-1007 New Issue
2020-04-18 07:36 d34db33f-1007 Status new => assigned
2020-04-18 07:36 d34db33f-1007 Assigned To => sbrun
2020-05-06 09:49 sbrun Assigned To sbrun =>
2021-05-31 13:37 rhertzog Category Tool Upgrade => Tool Upgrade Request