alpha release

Tor 0.2.1.13-alpha includes another big pile of minor bugfixes and
cleanups. We're finally getting close to a release candidate.

https://www.torproject.org/download

Changes in version 0.2.1.13-alpha - 2009-03-09
Major bugfixes:

• Correctly update the list of which countries we exclude as
  exits, when the GeoIP file is loaded or reloaded. Diagnosed by
  lark. Bugfix on 0.2.1.6-alpha.

Minor bugfixes (on 0.2.0.x and earlier):

• Automatically detect MacOSX versions earlier than 10.4.0, and
  disable kqueue from inside Tor when running with these versions.
  We previously did this from the startup script, but that was no
  help to people who didn't use the startup script. Resolves bug 863.
• When we had picked an exit node for a connection, but marked it as
  "optional", and it turned out we had no onion key for the exit, read more »

Tor Browser Bundle 1.1.9 is released.

It includes the following changes:

Update Tor to 0.2.1.12-alpha
Update Firefox to 3.0.6
Update Vidalia to 0.1.11

It's available at https://www.torproject.org/torbrowser/

Tor 0.2.1.12-alpha features several more security-related fixes. You
should upgrade, especially if you run an exit relay (remote crash) or
a directory authority (remote infinite loop), or you're on an older
(pre-XP) or not-recently-patched Windows (remote exploit). It also
includes a big pile of minor bugfixes and cleanups.

https://www.torproject.org/download.html.en

Changes in version 0.2.1.12-alpha - 2009-02-08
Security fixes:

• Fix an infinite-loop bug on handling corrupt votes under certain
  circumstances. Bugfix on 0.2.0.8-alpha.
• Fix a temporary DoS vulnerability that could be performed by
  a directory mirror. Bugfix on 0.2.0.9-alpha; reported by lark.
• Avoid a potential crash on exit nodes when processing malformed
  input. Remote DoS opportunity. Bugfix on 0.2.1.7-alpha.

Minor bugfixes:

• Let controllers actually ask for the "clients_seen" event for read more »

Tor 0.2.1.11-alpha finishes fixing the "if your Tor is off for a week it
will take a long time to bootstrap again" bug. It also fixes an important
security-related bug reported by Ilja van Sprundel. You should upgrade.
(We'll send out more details about the bug once people have had some
time to upgrade.)

https://www.torproject.org/download.html.en

Changes in version 0.2.1.11-alpha - 2009-01-20
Security fixes:

• Fix a heap-corruption bug that may be remotely triggerable on
  some platforms. Reported by Ilja van Sprundel.

Major bugfixes:

• Discard router descriptors as we load them if they are more than
  five days old. Otherwise if Tor is off for a long time and then
  starts with cached descriptors, it will try to use the onion
  keys in those obsolete descriptors when building circuits. Bugfix
  on 0.2.0.x. Fixes bug 887.

Minor features: read more »

I asked for community feedback in this post about drag and drop installation of the Vidalia bundle for Apple's OS X. In working with the Vidalia team, we now have a drag and drop installer. This is experimental. It's designed for a clean install. It won't migrate your settings, nor will it configure anything for you. Upon installing, your milk may sour and your salt may run off with your pepper. Now that the disclaimers are over, here's what it contains and does do for you. read more »

It includes Universal binaries for:

• Vidalia version 0.2.0-svn r3425
• Polipo 1.0.4 configured to use Tor as a socksproxy
• Tor 0.2.1.10-alpha compiled with prefix and bindir set to /Applications/Vidalia.app

Tor 0.2.1.10-alpha fixes two major bugs in bridge relays (one that would
make the bridge relay not so useful if it had DirPort set to 0, and one
that could let an attacker learn a little bit of information about the
bridge's users), and a bug that would cause your Tor relay to ignore a
circuit create request it can't decrypt (rather than reply with an error).
It also fixes a wide variety of other bugs.

https://www.torproject.org/download.html.en

Changes in version 0.2.1.10-alpha - 2009-01-06
Major bugfixes: read more »

• If the cached networkstatus consensus is more than five days old,
  discard it rather than trying to use it. In theory it could
  be useful because it lists alternate directory mirrors, but in
  practice it just means we spend many minutes trying directory
  mirrors that are long gone from the network. Helps bug 887 a bit;
  bugfix on 0.2.0.x.
• Bridge relays that had DirPort set to 0 would stop fetching
  descriptors shortly after startup, and then briefly resume
  after a new bandwidth test and/or after publishing a new bridge
  descriptor. Bridge users that try to bootstrap from them would
  get a recent networkstatus but would get descriptors from up to
  18 hours earlier, meaning most of the descriptors were obsolete
  already. Reported by Tas; bugfix on 0.2.0.13-alpha.
• Prevent bridge relays from serving their 'extrainfo' document
  to anybody who asks, now that extrainfo docs include potentially
  sensitive aggregated client geoip summaries. Bugfix on
  0.2.0.13-alpha.

Tor 0.2.1.9-alpha fixes many more bugs, some of them security-related.

https://www.torproject.org/download.html.en

Changes in version 0.2.1.9-alpha - 2008-12-25
New directory authorities:

• gabelmoo (the authority run by Karsten Loesing) now has a new
  IP address.

Security fixes:

• Never use a connection with a mismatched address to extend a
  circuit, unless that connection is canonical. A canonical
  connection is one whose address is authenticated by the router's
  identity key, either in a NETINFO cell or in a router descriptor.
• Avoid a possible memory corruption bug when receiving hidden service
  descriptors. Bugfix on 0.2.1.6-alpha.

Major bugfixes: read more »

Bug Fixes

Tor 0.2.1.7-alpha (released November 8) fixes a major security problem in Debian and Ubuntu packages (and maybe other packages) noticed by Theo de Raadt, fixes a smaller security flaw that might allow an attacker to access local services, adds better defense against DNS poisoning attacks on exit relays, further improves hidden service performance, and fixes a variety of other issues.
http://archives.seul.org/or/talk/Nov-2008/msg00229.html

Tor 0.2.0.32 (released November 20) fixes a major security problem in Debian and Ubuntu packages (and maybe other packages) noticed by Theo de Raadt, fixes a smaller security flaw that might allow an attacker to access local services, further improves hidden service performance, and fixes a variety of other issues.
http://archives.seul.org/or/announce/Dec-2008/msg00000.html

Vidalia 0.1.10 (released November 2) fixes some presentation bugs and some bugs in the Windows installer. read more »

Tor 0.2.1.8-alpha fixes some crash bugs in earlier alpha releases,
builds better on unusual platforms like Solaris and old OS X, and fixes
a variety of other issues.

https://www.torproject.org/download

Changes in version 0.2.1.8-alpha - 2008-12-08
Major features:

• New DirPortFrontPage option that takes an html file and publishes
  it as "/" on the DirPort. Now relay operators can provide a
  disclaimer without needing to set up a separate webserver. There's
  a sample disclaimer in contrib/tor-exit-notice.html.

Security fixes:

• When the client is choosing entry guards, now it selects at most
  one guard from a given relay family. Otherwise we could end up with
  all of our entry points into the network run by the same operator.
  Suggested by Camilo Viecco. Fix on 0.1.1.11-alpha.

Major bugfixes:

• Fix a DOS opportunity during the voting signature collection process
  at directory authorities. Spotted by rovv. Bugfix on 0.2.0.x.
• Fix a possible segfault when establishing an exit connection. Bugfix
  on 0.2.1.5-alpha.

Minor bugfixes: read more »

• Get file locking working on win32. Bugfix on 0.2.1.6-alpha. Fixes
  bug 859.
• Made Tor a little less aggressive about deleting expired
  certificates. Partial fix for bug 854.
• Stop doing unaligned memory access that generated bus errors on
  sparc64. Bugfix on 0.2.0.10-alpha. Fix for bug 862.
• Fix a crash bug when changing EntryNodes from the controller. Bugfix
  on 0.2.1.6-alpha. Fix for bug 867. Patched by Sebastian.
• Make USR2 log-level switch take effect immediately. Bugfix on
  0.1.2.8-beta.
• If one win32 nameserver fails to get added, continue adding the
  rest, and don't automatically fail.

Tor 0.2.1.7-alpha fixes a major security problem in Debian and Ubuntu
packages (and maybe other packages) noticed by Theo de Raadt, fixes
a smaller security flaw that might allow an attacker to access local
services, adds better defense against DNS poisoning attacks on exit
relays, further improves hidden service performance, and fixes a variety
of other issues.

https://www.torproject.org/download

Changes in version 0.2.1.7-alpha - 2008-11-08

Security fixes: read more »

• The "ClientDNSRejectInternalAddresses" config option wasn't being
  consistently obeyed: if an exit relay refuses a stream because its
  exit policy doesn't allow it, we would remember what IP address
  the relay said the destination address resolves to, even if it's
  an internal IP address. Bugfix on 0.2.0.7-alpha; patch by rovv.
• The "User" and "Group" config options did not clear the
  supplementary group entries for the Tor process. The "User" option
  is now more robust, and we now set the groups to the specified
  user's primary group. The "Group" option is now ignored. For more
  detailed logging on credential switching, set CREDENTIAL_LOG_LEVEL
  in common/compat.c to LOG_NOTICE or higher. Patch by Jacob Appelbaum
  and Steven Murdoch. Bugfix on 0.0.2pre14. Fixes bug 848.
• Do not use or believe expired v3 authority certificates. Patch
  from Karsten. Bugfix in 0.2.0.x. Fixes bug 851.