[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[or-cvs] a few more thoughts about seeds



Update of /home2/or/cvsroot/tor/doc
In directory moria.mit.edu:/home2/arma/work/onion/cvs/tor/doc

Modified Files:
	dir-spec.txt 
Log Message:
a few more thoughts about seeds


Index: dir-spec.txt
===================================================================
RCS file: /home2/or/cvsroot/tor/doc/dir-spec.txt,v
retrieving revision 1.4
retrieving revision 1.5
diff -u -d -r1.4 -r1.5
--- dir-spec.txt	21 Jan 2005 08:16:02 -0000	1.4
+++ dir-spec.txt	21 Jan 2005 08:20:01 -0000	1.5
@@ -106,8 +106,12 @@
   and not fingerprints, it also means that dirservers can rotate their
   signing keys transparently.
 
-  But, keeping track of the seed keys becomes a critical security issue;
-  and rotating them in a backward-compatible way adds complexity.
+  But, keeping track of the seed keys becomes a critical security issue.
+  And rotating them in a backward-compatible way adds complexity. Also,
+  dirserver locations must be at least somewhere static, since each lost
+  dirserver degrades reachability for old clients. So as the dirserver
+  list rolls over we have no choice but to put out new versions.
+
 
 Piece three: (optional)