bugfixes

Tor 0.2.1.20 fixes a crash bug when you're accessing many hidden services
at once, prepares for more performance improvements, and fixes a bunch
of smaller bugs.

The Windows and OS X bundles also include a more recent Vidalia, and
switch from Privoxy to Polipo.

The OS X installers are now drag and drop. It's best to un-install
Tor/Vidalia and then install this new bundle, rather than upgrade. If
you want to upgrade, you'll need to update the paths for Tor and Polipo
in the Vidalia Settings window.

https://www.torproject.org/easy-download

Changes in version 0.2.1.20 - 2009-10-15
o Major bugfixes:

- Send circuit or stream sendme cells when our window has decreased
by 100 cells, not when it has decreased by 101 cells. Bug uncovered
by Karsten when testing the "reduce circuit window" performance
patch. Bugfix on the 54th commit on Tor -- from July 2002,
before the release of Tor 0.0.0. This is the new winner of the read more »

Vidalia 0.1.15 is released. It contains fixes for:

• Bump the minimum required Qt version to 4.3.0.
• Remove USE_QSSLSOCKET as a build option. If your Qt doesn't support !OpenSSL, then you don't get GeoIP lookups.
• Fix the TorPostFlight portion of the OS X bundle installer so it doesn't fail when installing Torbutton.
• Include libeay32.dll in the Windows installers.

It can be obtained at https://www.torproject.org/vidalia/

New releases

On June 20th we released Tor 0.2.1.16-rc.
On June 21st, we released Tor Browser Bundle 1.2.1.
On June 23rd, we released Tor Browser Bundle 1.2.2.
On June 24th, we released Tor 0.2.0.35-stable. We expect that this release is the last of the 0.2.0.x -stable series, soon to be replaced with the 0.2.1.x series.
On June 30th, we released Vidalia 0.1.14.

Censorship circumvention

Packaged rpms for Red Flag Linux version 6. Red Flag Linux is reported to be the new operating system for all Internet cafe's in China. So far, no one has seen this conversion actually happen, but now we're ready if it does.

Our email autoresponder, gettor , received a number of patches to deal with dkim issues, including finding a dkim bug that prevented yahoo email users from fetching Tor. This bug has been fixed. Additionally, we've whitelisted some domains where we read more »

New releases
On April 12, we released 0.2.1.14-rc. Read the details in the announcement.

Outreach
Roger attended an ITSG conference in Chicago.

Roger, Nick, Jacob, and Mike attended the CodeCon conference in San Francisco, http://www.codecon.org/2009/.

Andrew met with the Center for Democracy and Human Rights in Saudi Arabia to discuss using Tor for their mission, http://cdhr.info.

Roger and Andrew met with the Department of Justice CyberCrime Division to give an overview of how Tor works and how we could better work with law enforcement.

Wendy, Roger, and Andrew had a dinner with Internews Central Asia media development staff.

Andrew attended the CIMI/NED panel on World Press Freedom, http://cima.ned.org/860/world-press-freedom-day-2009.html. read more »

Tor 0.2.1.11-alpha finishes fixing the "if your Tor is off for a week it
will take a long time to bootstrap again" bug. It also fixes an important
security-related bug reported by Ilja van Sprundel. You should upgrade.
(We'll send out more details about the bug once people have had some
time to upgrade.)

https://www.torproject.org/download.html.en

Changes in version 0.2.1.11-alpha - 2009-01-20
Security fixes:

• Fix a heap-corruption bug that may be remotely triggerable on
  some platforms. Reported by Ilja van Sprundel.

Major bugfixes:

• Discard router descriptors as we load them if they are more than
  five days old. Otherwise if Tor is off for a long time and then
  starts with cached descriptors, it will try to use the onion
  keys in those obsolete descriptors when building circuits. Bugfix
  on 0.2.0.x. Fixes bug 887.

Minor features: read more »

Tor 0.2.1.8-alpha fixes some crash bugs in earlier alpha releases,
builds better on unusual platforms like Solaris and old OS X, and fixes
a variety of other issues.

https://www.torproject.org/download

Changes in version 0.2.1.8-alpha - 2008-12-08
Major features:

• New DirPortFrontPage option that takes an html file and publishes
  it as "/" on the DirPort. Now relay operators can provide a
  disclaimer without needing to set up a separate webserver. There's
  a sample disclaimer in contrib/tor-exit-notice.html.

Security fixes:

• When the client is choosing entry guards, now it selects at most
  one guard from a given relay family. Otherwise we could end up with
  all of our entry points into the network run by the same operator.
  Suggested by Camilo Viecco. Fix on 0.1.1.11-alpha.

Major bugfixes:

• Fix a DOS opportunity during the voting signature collection process
  at directory authorities. Spotted by rovv. Bugfix on 0.2.0.x.
• Fix a possible segfault when establishing an exit connection. Bugfix
  on 0.2.1.5-alpha.

Minor bugfixes: read more »

• Get file locking working on win32. Bugfix on 0.2.1.6-alpha. Fixes
  bug 859.
• Made Tor a little less aggressive about deleting expired
  certificates. Partial fix for bug 854.
• Stop doing unaligned memory access that generated bus errors on
  sparc64. Bugfix on 0.2.0.10-alpha. Fix for bug 862.
• Fix a crash bug when changing EntryNodes from the controller. Bugfix
  on 0.2.1.6-alpha. Fix for bug 867. Patched by Sebastian.
• Make USR2 log-level switch take effect immediately. Bugfix on
  0.1.2.8-beta.
• If one win32 nameserver fails to get added, continue adding the
  rest, and don't automatically fail.