[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #26425 [Core Tor/Tor]: Add functionality to set SNI for client connections

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #26425 [Core Tor/Tor]: Add functionality to set SNI for client connections
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 27 Jun 2018 18:47:17 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 27 Jun 2018 14:47:27 -0400
In-reply-to: <044.6def9a2245fed7232af9c635e8870f8d@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.6def9a2245fed7232af9c635e8870f8d@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#26425: Add functionality to set SNI for client connections
--------------------------+-----------------------------------
 Reporter:  twim          |          Owner:  (none)
     Type:  enhancement   |         Status:  needs_information
 Priority:  Medium        |      Milestone:
Component:  Core Tor/Tor  |        Version:
 Severity:  Normal        |     Resolution:
 Keywords:                |  Actual Points:
Parent ID:                |         Points:
 Reviewer:  asn           |        Sponsor:
--------------------------+-----------------------------------

Comment (by arma):

 What about a design where Tor has a pool of 20 SNIs, and chooses between
 them, as its default behavior?

 Or it flips a coin and either picks an SNI from the pool, or fabricates a
 fake one like the current behavior.

 Neither of those strategies will make Tor traffic blend in particularly
 well, but both of them would let a user behind twim's firewall use Tor
 out-of-the-box.

 (I guess they could both help with fingerprinting Tor in other ways
 though? Like, "find out if the domain they claim to be going to is
 associated with that other IP address". But, "that domain they claim to be
 going to doesn't even resolve" is a pretty strong indicator as it is.)

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/26425#comment:14>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #26425 [Core Tor/Tor]: Add functionality to set SNI for client connections
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #24977 [Core Tor/Tor]: Non-fatal assertion !(tor_mem_is_zero((const char*)node->hsdir_index->fetch, DIGEST256_LEN))
Next by Author: Re: [tor-bugs] #22716 [Community/Outreach]: Write a blog post advocating for getting more relays
Previous by thread: Re: [tor-bugs] #26425 [Core Tor/Tor]: Add functionality to set SNI for client connections
Next by thread: Re: [tor-bugs] #26425 [Core Tor/Tor]: Add functionality to set SNI for client connections
Index(es):
- Author
- Thread