[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-bugs] #18142 [Tor]: Anti-Automated-Scanning: Support "marking" with iptables TCP connections differently "for each circuits"
#18142: Anti-Automated-Scanning: Support "marking" with iptables TCP connections
differently "for each circuits"
-------------------------+----------------------------------
Reporter: naif | Owner:
Type: enhancement | Status: new
Priority: Low | Milestone: Tor: unspecified
Component: Tor | Version: Tor: unspecified
Severity: Normal | Resolution:
Keywords: tor-core | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------+----------------------------------
Changes (by yawning):
* priority: Medium => Low
* keywords: => tor-core
* version: => Tor: unspecified
* milestone: => Tor: unspecified
Comment:
I'm skeptical about this for the reasons that cypherpunks mentioned, and
that it'll be fundamentally non-portable.
The portable version of this sort of mitigation would be something like
clamping the number of simultaneous streams to a given value, like how we
can for HSes, but that still is of limited use, and would be either overly
brittle or totally pointless depending on what the exact number for "given
value" ends up being.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18142#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs