changelog and spec changes for the .exit fix

diff --git a/ChangeLog b/ChangeLog
index 0a85857c6906049b9d42dafc2dfb8c4943cb6cfa..a3d76ca4ce3b93e6b0ebc549c7d571725191a5a9 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,4 +1,10 @@
 Changes in version 0.2.2.1-alpha - 2009-08-26
+  o Security fixes:
+    - Start the process of disabling ".exit" address notation, since it
+      can be used for a variety of esoteric application-level attacks
+      on users. To reenable it, set "AllowDotExit 1" in your torrc. Fix
+      on 0.0.9rc5.
+
   o New directory authorities:
     - Set up urras (run by Jacob Appelbaum) as the seventh v3 directory
       authority.

diff --git a/doc/spec/address-spec.txt b/doc/spec/address-spec.txt
index fdae9b82a4f6e80067ffd21661d0a5ab450d60d3..2e1aff2b8abba005c7bf0d3a5b07098d5aff9571 100644 (file)
--- a/doc/spec/address-spec.txt
+++ b/doc/spec/address-spec.txt
@@ -33,10 +33,13 @@
   "www.google.com.foo.exit=64.233.161.99.foo.exit" to speed subsequent
   lookups.
 
+  The .exit notation is disabled by default as of Tor 0.2.2.1-alpha, due
+  to potential application-level attacks.
+
   EXAMPLES:
      www.example.com.exampletornode.exit
 
-        Connect to www.example.com from the node called "exampletornode."
+        Connect to www.example.com from the node called "exampletornode".
 
      exampletornode.exit