[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Alternatives to Tor Exit Enclaves

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Alternatives to Tor Exit Enclaves
From: Andrew Clausen <clausen@xxxxxxxxxxxxxx>
Date: Wed, 18 Apr 2012 19:05:14 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 18 Apr 2012 19:05:28 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; bh=ToAYC8ikmQV26krNZuPqu2XW/0E/lKan1RHjpIYzlQo=; b=PZd4d0i9Tz25ET3F4qT57C7f3BtIFziY5Y475kGLxMBoKr62H9q5nhT26YDW+mlFbH 75iY0SZp41u/BSvHqksMC4UVSxBsWKQV0FCVVObdqgLrZeFU+nOvGN9QFTwkX51XS0l/ qFTi4hA96m2IVSJG4rpABvd8kFCysESyJclTdzkJByInkhQyurp6IeaVckp+P4V2xalD frkgtGUOn7FRqahfhtPDx5urm1j7hjJiWuKJ4VxzQWQ6W7qYyW+seNwn9rUhqmLYCZ6f 6ide8IU8HFlCFI++qIAyIjBMOW/sGLHWH8+fg81Jb93BU7cdIbNdsULnR1YqxZZcLZ+P 6P8A==
In-reply-to: <4F8F3660.7050708@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for discussion by the developers of Tor." <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <4F8F320A.50206@xxxxxxxxxx> <CAAXZBWKuVy-h8-hJcJLQ11jYRWHwL_etx_Z=Ye+S3emNr2Deiw@xxxxxxxxxxxxxx> <4F8F3660.7050708@xxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

Hi Arturo,

On 18 April 2012 17:47, Arturo FilastÃ <art@xxxxxxxxxx> wrote:
> On 4/18/12 5:33 PM, Andrew Clausen wrote:
>> Do .exit addresses already do what you had in mind? ÂFor example, if
>> you add "AllowDotExit 1" to your torrc, you can type an address like
>> this
>
> No, .exit notation is a bad idea because it allows people
> to force you to exit through a particular exit node of their
> choosing.

I suppose this is true, according to the spec.  (When I tested this
out, the implementation seemed to match my proposal below rather than
the spec.  I haven't had a chance to look at it.)

However, it would be easy to change Tor slightly.  If Tor used four
ORs rather than three with .exit addresses, then there would be no
problem.  The only difference between using "http://myserver.exit";
rather than "https://myserver.com"; would be that the last hop would
use the Tor protocol rather than HTTP.

> For example I can place a <img src=""> tag on a website
> and de-anonymize every user by getting them to go through my
> address.

The situation for <img src="http://myserver.exit";> would be no worse
than for <img src="http://myserver.com";>

Cheers,
Andrew
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Alternatives to Tor Exit Enclaves
  - From: Arturo Filastò
- Re: [tor-dev] Alternatives to Tor Exit Enclaves
  - From: Andrew Clausen
- Re: [tor-dev] Alternatives to Tor Exit Enclaves
  - From: Arturo FilastÃ

Prev by Author: Re: [tor-dev] Alternatives to Tor Exit Enclaves
Next by Author: Re: [tor-dev] Alternatives to Tor Exit Enclaves
Previous by thread: Re: [tor-dev] Alternatives to Tor Exit Enclaves
Next by thread: Re: [tor-dev] Alternatives to Tor Exit Enclaves
Index(es):
- Author
- Thread