[Tails-dev] [review'n'merge:1.0] bugfix/i2p_incoming (issue …

Delete this message

Reply to this message
Autore: Kill Your TV
Data:  
To: tails-dev
Oggetto: [Tails-dev] [review'n'merge:1.0] bugfix/i2p_incoming (issue #7070)
Tails devs,

Please review and merge the following change for the upcoming Tails 1.0


git://repo.or.cz/tails/kytv.git bugfix/i2p_incoming

It's a small but important change, setting I2P to disable inbound
connections. Inbound connections are already blocked with ferm but this
change lets I2P know about it.

Since repo.or.cz is ridiculously slow right now, I'm attaching the
trivial patch to this email. Additionally, issue #7070 has been
created to track this.

Thanks :)

--
GPG ID: 0x5BF72F42D0952C5A (transition info at
http://kytvi2pll2jw5gip.onion/blog/posts/2014-03-22-New-4096-GPG-key/)
Fingerprint: BD12 65FD 4954 C40A EBCB F5D7 5BF7 2F42 D095 2C5A
From b4edf99dbc8ea4504d0611f65bb75d8ca0939453 Mon Sep 17 00:00:00 2001
From: Tails developers <amnesia@???>
Date: Fri, 11 Apr 2014 16:50:42 +0000
Subject: [PATCH] I2P: disble inbound connections

Tails already restricts incoming connections, but this change tells I2P
about it.
---
 config/chroot_local-hooks/16-i2p_config |    2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)


diff --git a/config/chroot_local-hooks/16-i2p_config b/config/chroot_local-hooks/16-i2p_config
index 1dd0664..cf1a8f2 100755
--- a/config/chroot_local-hooks/16-i2p_config
+++ b/config/chroot_local-hooks/16-i2p_config
@@ -29,10 +29,12 @@ sed -i 's|^.*\(wrapper\.java\.additional\.6=-Djava\.net\.preferIPv6Addresses=\).
# * IPv6: Disabled
# * HiddenMode: Enabled
# * In-I2P Network Updates: Disabled
+# * Inbound connections: Disabled (setting is "i2cp.ntcp.autoip")
cat > "$I2P/router.config" << EOF
# NOTE: This I2P config file must use UTF-8 encoding
i2cp.disableInterface=true
i2np.ntcp.ipv6=false
+i2np.ntcp.autoip=false
i2np.udp.ipv6=false
router.isHidden=true
router.updateDisabled=true
--
1.7.2.5