Opened 2 years ago

Last modified 2 years ago

#2478 new defect

I2PTunnelHTTPServer logs should be scrubbed

Reported by: Reportage Owned by:
Priority: minor Milestone: undecided
Component: apps/i2ptunnel Version: 0.9.39
Keywords: logging, privacy Cc:
Parent Tickets: #2472 Sensitive: no


Logs available when serving as an outproxy include privacy-infringing info when the client is accessing over http. Of particular note is the logging of Cookie ID's and complete URL requests when Info level logging is enabled for the I2PTunnelHTTPServer component, though there may be additional header/request data that also provides too much information about the client.

This information should be scrubbed, truncated or otherwise obfuscated to avoid exposing potentially compromising information about the client.


Change History (1)

comment:1 Changed 2 years ago by zzz

Parent Tickets: 2472

It's not clear that HTTPServer is the correct tunnel choice for outproxies; standard tunnel may be better. Or, perhaps, it will be a new tunnel type, or a plugin, as a part of #2472. See that ticket also for a discussion of logging requirements. For some use cases or jurisdictions, a 'don't log anything' policy may be correct; for others, a fairly complete logging/admin/blocking solution may be required.

So I'm not, for the moment, buying the OP assertion that it's 1) an HTTP tunnel and 2) the requirement is zero logging. Attaching to #2472 as parent.

Note: See TracTickets for help on using tickets.