diff options
author | Jacob Appelbaum <jacob@appelbaum.net> | 2012-01-29 22:58:34 -0800 |
---|---|---|
committer | Jacob Appelbaum <jacob@appelbaum.net> | 2012-01-29 22:58:34 -0800 |
commit | 30118bb325f7f1e7294343f05b59a302dbf8b02a (patch) | |
tree | 02a33d183af6e9a3852cc0041c7b2570d54016ef /TODO | |
parent | ed52c6341da7ff2b6c8e0b9cd6e57b927816ca9f (diff) | |
download | tlsdate-30118bb325f7f1e7294343f05b59a302dbf8b02a.tar.gz |
Add TODO list
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 20 |
1 files changed, 20 insertions, 0 deletions
@@ -0,0 +1,20 @@ + +Here is a nice list of things to do to improve tlsdate: + + 0) autoconf the project + move code into src/ + move configs into configs/ + + 1) hack the client handshake to not leak the clock to the server + set it to all zeros or something cute or something random + + 2) allow users to pass certs for custom verification + 3) allow users to provide custom hostnames or IP addresses + 4) allow users to disable verification entirely + 5) daemonize and regularly slam the clock + 6) skew the clock rather than slamming it + 7) drop privs earlier + 8) audit the code for show stopping bugs + 9) make this work with Tor in a proxy safe manner (no DNS mode) + +Patches welcome! |