For the record, this issue was slashdoted yesterday:
http://apache.slashdot.org/story/16/01/30/1825256/sensitive-information-can-be-revealed-from-tor-hidden-services-on-apache
On Monday 09 February 2015 16:34:02, Jean-Michel Nirgal Vourgère
wrote:
> What is your opinion on that problem?
That's a valid feature request. But for after jessie.
> Do you see a more generic way to restrict tor incoming connections
> so that it doesn't match "require local" filter?
I don't h
Package: apache2
Version: 2.4.10-9
Severity: wishlist
Tags: security
Hello
When one install a tor hidden service, a local proxy is installed.
This is an example from default /etc/tor/torrc [1] (This is commented
out in the example)
#HiddenServicePort 80 127.0.0.1:80
This means that all httpd con
3 matches
Mail list logo
