Tor Blog | The Tor Project

Check the status of Tor services with status.torproject.org

The Tor Project now has a status page which shows the state of our major services.

You can check status.torproject for news about major outages in Tor services, including v3 and v2 onion services, directory authorities, our website (torproject.org), and the check.torproject.org tool. The status page also displays outages related to Tor internal services, like our GitLab instance.

This post documents why we launched status.torproject.org, how the service was built, and how it works.

Defend Dissent with Tor

Guest post by Glencora Borradaile

New Release: Tor Browser 10.5a15

Tor Browser 10.5a15 is now available from the Tor Browser download page and also from our distribution directory.

Domain Shadowing: Leveraging CDNs for Robust Blocking-Resistant Communications

We invited guest blog author, Mingkui Wei, to submit a summary of their research to the blog this week.

4 comments

New Release: Tor Browser 10.0.16

Tor Browser 10.0.16 is now available from the Tor Browser download page and also from our distribution directory.

New Alpha Release: Tor 0.4.6.2-alpha

There's a new alpha release available for download. If you build Tor from source, you can download the source code for 0.4.6.2-alpha from the download page on the website. Packages should be available over the coming weeks, with a new alpha Tor Browser release likely some time next week.

Remember, this is an alpha release: you should only run this if you'd like to find and report more bugs than usual.

Tor 0.4.6.2-alpha is the second alpha in its series. It fixes several small bugs in previous releases, and solves other issues that had enabled denial-of-service attacks and affected integration with other tools.

Changes in version 0.4.6.2-alpha - 2021-04-15

Minor features (client):
- Clients now check whether their streams are attempting to re-enter the Tor network (i.e. to send Tor traffic over Tor), and close them preemptively if they think exit relays will refuse them for this reason. See ticket 2667 for details. Closes ticket 40271.
Minor features (command line):
- Add long format name "--torrc-file" equivalent to the existing command-line option "-f". Closes ticket 40324. Patch by Daniel Pinto.

New Release: Tor Browser 10.5a14

Tor Browser 10.5a14 is now available from the Tor Browser Alpha download page and also from our distribution directory.

New Release: Tor Browser 10.5a13

Tor Browser 10.5a13 is now available from the Tor Browser Alpha download page and also from our distribution directory.

5 comments

New Release: Tor Browser 10.0.15

Tor Browser 10.0.15 is now available from the Tor Browser download page and also from our distribution directory.

Onionize your Workflow with the Onion Guide Fanzine

One way we help human rights defenders and organizations take back their right to privacy online is by helping them to use and set up onion services. Last year, thanks to the support of Digital Defenders Partnership, we wrote a series of Onion Guides intended to make it easier for our partners to correctly and safely set up their own onion services.

19 comments

Upcoming Events

July 12, 2021 - July 16, 2021

Privacy Enhancing Technologies Symposium (PETS)

August 27, 2021

Free and Open Communications on the Internet (FOCI) workshop

See All Upcoming Events

Recent Updates

Internet Freedom, Privacy, & LGBTQIA+ Human Rights

Every June, we recognize Pride month because internet freedom and the human rights of LGBTQIA+ people go hand in hand.

New stable security releases: 0.3.5.15, 0.4.4.9, 0.4.5.9, 0.4.6.5

After months of work, we have a new stable release series! If you build Tor from source, you can download the source code for 0.4.6.5 on the download page. Packages should be available within the next several weeks, with a new Tor Browser around the end of the week.

Because this release includes security fixes, we are also releasing updates for our other supported releases. You can find their source at https://dist.torproject.org:

0.3.5.15 (gpg signature) (ChangeLog)
0.4.4.9 (gpg signature) (ChangeLog) [Note that 0.4.4.9 hits end-of-life tomorrow; this is the last supported 0.4.4.9 release.]
0.4.5.9 (gpg signature) (ChangeLog)

Tor 0.4.6.5 is the first stable release in its series. The 0.4.6.x series includes numerous features and bugfixes, including a significant improvement to our circuit timeout algorithm that should improve observed client performance, and a way for relays to report when they are overloaded.

This release also includes security fixes for several security issues, including a denial-of-service attack against onion service clients, and another denial-of-service attack against relays. Everybody should upgrade to one of 0.3.5.15, 0.4.4.9, 0.4.5.9, or 0.4.6.5.

Below are the changes since 0.4.5.8. For a list of changes since 0.4.6.4-rc, see the ChangeLog file.

Changes in version 0.4.6.5 - 2021-06-14

Major bugfixes (security):
- Don't allow relays to spoof RELAY_END or RELAY_RESOLVED cell on half-closed streams. Previously, clients failed to validate which hop sent these cells: this would allow a relay on a circuit to end a stream that wasn't actually built with it. Fixes bug 40389; bugfix on 0.3.5.1-alpha. This issue is also tracked as TROVE-2021- 003 and CVE-2021-34548.
Major bugfixes (security, defense-in-depth):
- Detect more failure conditions from the OpenSSL RNG code. Previously, we would detect errors from a missing RNG implementation, but not failures from the RNG code itself. Fortunately, it appears those failures do not happen in practice when Tor is using OpenSSL's default RNG implementation. Fixes bug 40390; bugfix on 0.2.8.1-alpha. This issue is also tracked as TROVE-2021-004. Reported by Jann Horn at Google's Project Zero.

New Release: Tor Browser 10.5a16

Tor Browser 10.5a16 is now available from the Tor Browser download page and also from our

New Release: Tor Browser 10.0.17

Tor Browser 10.0.17 is now available from the Tor Browser download page and also from our