Okuqanjiwe okuyinhloko:
- Ukusekelwa kokuhlola kokupheda kweleveli ye-chain kusetshenziswe ukuthuthukisa ukuvikeleka ezindleleni zokutholwa kwethrafikhi ye-Tor. Iklayenti manje lengeza amaseli okugwedla ekuqaleni kwamaketango
YETHULA kanye ne-RENDEZVOUS , okwenza ithrafikhi kulawa maketango ifane nethrafikhi evamile ephumayo. Izindleko zokukhushulwa kokuvikela ziwukwengezwa kwamaseli amabili engeziwe ohlangothini ngalunye lwamaketanga e-RENDEZVOUS, kanye neseli elilodwa elikhuphuka nomfula kanye namaseli angu-10 aphansi komfula amaketanga E-INTRODUCE. Indlela iyasebenza lapho inketho ye-MiddleNodes icaciswa kuzilungiselelo futhi ingakhutshazwa ngenketho ye-CircuitPadding; -
Kwengeziwe usekelo lwamaseli e-SENDME aqinisekisiwe ukuze avikeleke kuwoUkuhlaselwa kwe-DoS , ngokusekelwe ekudalweni komthwalo we-parasitic esimweni lapho iklayenti licela ukulandwa kwamafayela amakhulu futhi lime kancane ukusebenza kokufunda ngemva kokuthumela izicelo, kodwa liqhubeka nokuthumela imiyalo yokulawula ye-SENDME eyala ama-node okokufaka ukuthi aqhubeke nokudlulisa idatha. Iseli ngalinye
I-SENDME manje ihlanganisa i-hash yethrafikhi eyaziyo, futhi indawo yokugcina lapho ithola iseli ye-SENDME ingaqinisekisa ukuthi elinye iqembu seliyitholile kakade ithrafikhi ethunyelwe lapho kucutshungulwa amaseli adlule; - Isakhiwo sihlanganisa ukuqaliswa kwesistimu engaphansi evamile yokudlulisa imilayezo ngemodi yomshicileli-ababhalisile, engasetshenziswa ukuhlela ukusebenzisana kwe-intra-module;
- Ukuze uhlukanise imiyalo yokulawula, kusetshenziswa uhlelo oluncane olujwayelekile lokudlulisa esikhundleni sokwehlukanisa okuhlukene kwedatha yokufaka yomyalo ngamunye;
- Ukuthuthukiswa kokusebenza kwenziwe ukuze kwehliswe umthwalo ku-CPU. I-Tor manje isebenzisa ijeneretha yenombolo engahleliwe esheshayo ehlukile (PRNG) kuchungechunge ngalunye, olusekelwe ekusetshenzisweni kwemodi yokubethela ye-AES-CTR kanye nokusetshenziswa kokwakhiwa kwebhafa njengelibhotho kanye nekhodi entsha ye-arc4random() evela ku-OpenBSD. Ngedatha encane yokukhiphayo, ijeneretha ehlongozwayo ishesha cishe izikhathi eziyi-1.1.1 kune-CSPRNG evela ku-OpenSSL 100. Nakuba i-PRNG entsha ilinganiselwe ngokuthi inamandla ngokufihlakele abathuthukisi be-Tor, okwamanje isetshenziswa kuphela ezindaweni ezidinga ukusebenza okuphezulu, njengekhodi yokuhlela yokunamathisela okunamathiselwe kwi-padding;
- Inketho eyengeziwe "--list-modules" ukuze ubonise uhlu lwamamojula anikwe amandla;
- Ngenguqulo yesithathu yephrothokholi yezinsizakalo ezifihliwe, umyalo we-HSFETCH usetshenzisiwe, owawusekelwa kuphela enguqulweni yesibili;
- Amaphutha alungisiwe kukhodi yokuqalisa ye-Tor (bootstrap) nasekuqinisekiseni ukusebenza kwenguqulo yesithathu yephrothokholi yezinsizakalo ezifihliwe.
Source: opennet.ru