From patchwork Thu Sep 14 17:45:12 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: =?utf-8?q?Peter_M=C3=BCller?= X-Patchwork-Id: 7174 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature ECDSA (secp384r1)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4Rml8c59bsz3wtG for ; Thu, 14 Sep 2023 17:45:20 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature ECDSA (secp384r1)) (Client CN "mail02.haj.ipfire.org", Issuer "R3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4Rml8Y0ldbz2Mg; Thu, 14 Sep 2023 17:45:17 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4Rml8X2k13z30HR; Thu, 14 Sep 2023 17:45:16 +0000 (UTC) Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-384) client-signature ECDSA (P-384)) (Client CN "mail01.haj.ipfire.org", Issuer "R3" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4Rml8W1KXZz2y2l for ; Thu, 14 Sep 2023 17:45:15 +0000 (UTC) Received: from people01.haj.ipfire.org (people01.haj.ipfire.org [172.28.1.161]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature ECDSA (secp384r1)) (Client CN "people01.haj.ipfire.org", Issuer "R3" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4Rml8V6Slvz1V2; Thu, 14 Sep 2023 17:45:14 +0000 (UTC) Received: by people01.haj.ipfire.org (Postfix, from userid 1078) id 4Rml8V5RLrz2xs9; Thu, 14 Sep 2023 17:45:14 +0000 (UTC) From: =?utf-8?q?Peter_M=C3=BCller?= To: development@lists.ipfire.org Subject: [PATCH 2/2] Tor: Do not attempt to establish connections via IPv6 Date: Thu, 14 Sep 2023 17:45:12 +0000 Message-Id: <20230914174512.568996-2-peter.mueller@ipfire.org> X-Mailer: git-send-email 2.39.2 In-Reply-To: <20230914174512.568996-1-peter.mueller@ipfire.org> References: <20230914174512.568996-1-peter.mueller@ipfire.org> MIME-Version: 1.0 X-BeenThere: development@lists.ipfire.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: IPFire development talk List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: development-bounces@lists.ipfire.org Sender: "Development" To quote from the changelog of Tor 0.4.8.4: o Minor feature (client, IPv6): - Make client able to pick IPv6 relays by default now meaning ClientUseIPv6 option now defaults to 1. Closes ticket 40785. In order to avoid any malfunctions on IPFire installations, set this option to "0" explicitly. Signed-off-by: Peter Müller --- html/cgi-bin/tor.cgi | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/html/cgi-bin/tor.cgi b/html/cgi-bin/tor.cgi index 96be35102..75fdf0d5d 100644 --- a/html/cgi-bin/tor.cgi +++ b/html/cgi-bin/tor.cgi @@ -2,7 +2,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2022 IPFire Team # +# Copyright (C) 2007-2023 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -732,6 +732,7 @@ sub BuildConfiguration() { # Global settings. print FILE "Sandbox 1\n"; print FILE "HardwareAccel 1\n"; + print FILE "ClientUseIPv6 0\n"; print FILE "ControlPort $TOR_CONTROL_PORT\n"; if ($settings{'TOR_ENABLED'} eq 'on') {