6c1c40420b
- Never use a bridge or a controller-supplied node as an exit, even if its exit policy allows it. - Only build circuits if we have a sufficient threshold of the total descriptors that are marked in the consensus with the "Exit" flag. - Provide controllers with a safer way to implement the cookie authentication mechanism. With the old method, if another locally running program could convince a controller that it was the Tor process, then that program could trick the contoller into telling it the contents of an arbitrary 32-byte file. The new "SAFECOOKIE" authentication method uses a challenge-response approach to prevent this attack. We are not affected by the openssl vulnerability. Full release notes: https://gitweb.torproject.org/tor.git/blob/release-0.2.2:/ReleaseNotes ok sthen@ jasper@
26 lines
817 B
Plaintext
26 lines
817 B
Plaintext
$OpenBSD: patch-configure,v 1.16 2012/05/26 11:08:44 pascal Exp $
|
|
--- configure.orig Thu May 24 09:34:53 2012
|
|
+++ configure Sat May 26 12:20:11 2012
|
|
@@ -5557,8 +5557,8 @@ for ac_lib in '' nsl; do
|
|
if test -z "$ac_lib"; then
|
|
ac_res="none required"
|
|
else
|
|
- ac_res=-l$ac_lib
|
|
- LIBS="-l$ac_lib $ac_func_search_save_LIBS"
|
|
+ ac_res=-$ac_lib
|
|
+ LIBS="-$ac_lib $ac_func_search_save_LIBS"
|
|
fi
|
|
if ac_fn_c_try_link "$LINENO"; then :
|
|
ac_cv_search_gethostbyname=$ac_res
|
|
@@ -5613,8 +5613,8 @@ for ac_lib in '' dl; do
|
|
if test -z "$ac_lib"; then
|
|
ac_res="none required"
|
|
else
|
|
- ac_res=-l$ac_lib
|
|
- LIBS="-l$ac_lib $ac_func_search_save_LIBS"
|
|
+ ac_res=-$ac_lib
|
|
+ LIBS="-$ac_lib $ac_func_search_save_LIBS"
|
|
fi
|
|
if ac_fn_c_try_link "$LINENO"; then :
|
|
ac_cv_search_dlopen=$ac_res
|