Randomize the "/001/" in psiphon URLs
Bug #457377 reported by
root
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
Obsolete Junk | ||||||
Psiphon-2.4-20091028-213542 |
Fix Committed
|
Undecided
|
Unassigned | |||
psiphon |
Fix Committed
|
Unknown
|
e.fryntov |
Bug Description
Was this meant to be randomized or customized by Hosts? One way or another, we should remove this blocking and enumeration vulnerability
Changed in psiphon: | |
status: | In Progress → New |
Changed in psiphon: | |
assignee: | root (n-root-psiphon-ca) → e.fryntov (e-fryntov) |
Changed in psiphon: | |
status: | New → Confirmed |
tags: | added: poser |
tags: | removed: poser |
visibility: | private → public |
Changed in psiphon: | |
milestone: | none → 2.4 |
Changed in psiphon: | |
status: | Confirmed → In Progress |
Changed in psiphon: | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
Random dictionary word, perhaps? Not sure.... We should also think about this in light of the possibility (probability?) that we will be using hostname-based psiphon URLs (as opposed to IP-based URLs) in the not-so-distant future. (In order to enable signed certs.)
For Psiphon to be usable from 'net cafes (which is, after all, one of its main design principles) the hostname _and_ this "suffix" must be relatively easy to memorize.