Refine AllowDotExit option
This is not a bug (or may be, depending on the way you look at it), but merely a suggestion to improve security.
As far as I know, "AllowDotExit 1" allows .exit addresses indiscriminately, without any restrictions.
This, in my view, isn't very wise as I could access web pages with web bugs in them, redirecting/forcing my browser to access .exit addresses without my knowledge.
This, at best, would reveal that I am using tor, and at worse could redirect my browser to places I don't want to go!
Would it be possible to have an option for AllowDotExit to restrict access only to MapAddress(es) defined in torrc and nothing else?
Thanks!
Trac:
Username: mr-4