[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: PrivacyNow is a BadExit (was Re: PrivacyNow node has misconfigured OpenDNS account)

Thanks. This brings up a couple of questions. One, The Onion Router.doc recommends against choosing one's exit nodes. Is your recommendation I exclude these naughty exit nodes, that are determined as such by Tor authorities?

The .doc (Section 4.9--Can I control what nodes I use for entry/exit?), says,
"We don't actually recommend you use these for normal use--you get the best security that Tor can provide when you leave the route selection to Tor." If you agree, why do you do this? I am assuming that is part of what your post implied or meant, i.e. that you do this in spite of Tor's recommendation.

Two, in my Home Folder/Library, I have two (2), torrc files. one is torrc, the other is torrc.orig.1

The first one (torrc), has:
# This file was generated by Tor; if you edit it, comments will not be preserved
# The old torrc file was renamed to torrc.orig.1 or similar, and Tor will ignore it
 # If set, Tor will accept connections from the same machine (localhost only)
# on this port, and allow those connections to control the Tor process using
# the Tor Control Protocol (described in control-spec.txt).
ControlPort 9051
# Store working data, state, keys, and caches here.
DataDirectory /Users/zZ/.tor/
# Where to send logging messages.  Format is minSeverity[-maxSeverity]
# (stderr|stdout|syslog|file FILENAME).
Log notice stdout

The second (torrc.orig.1), has nothing in it.

Which should I use? And, most importantly, what exactly do I write or enter into this file?
I really don't understand this: entry nodes nickname, nickname,...
This is where one does this, is it not? Please be exact, detailed and clear. Unfortunately, what is clear to most of you goes way over my head :()

Do I go to Tor's list of naughty exit nodes for the addresses to input?
I need lots of help here so I'm asking for your patience too.

Thanks very much.

-----Original Message-----
From: Scott Bennett <bennett@xxxxxxxxxx>
To: or-talk@xxxxxxxxxxxxx; Runa Sandvik <runa.sandvik@xxxxxxxxx>
Sent: Wed, Apr 14, 2010 9:51 pm
Subject: PrivacyNow is a BadExit (was Re: PrivacyNow node has misconfigured OpenDNS account)

     On Wed, 14 Apr 2010 13:34:47 +0200 Runa Sandvik <runa.sandvik@xxxxxxxxx>
>On Wed, Apr 14, 2010 at 1:31 PM, <zzzjethro666@xxxxxxxxxxxx> wrote:
>> Hello
>> When you add the exit PrivacyNow to "your" ExcludeExitNodes list, is this
>> done automatically inside of the Tor program afterwards, for any or all
>> clients,=A0 or is this something I need to do also do in my torrc file?
>This is something that you will have to do in your torrc file as well.
Yes, I guess I kind of botched my first message on this. I should
have also added a request that the directory authorities flag PrivacyNow
as a "BadExit" because it clearly meets the definition of a bad exit.
However, 1) any bad exits that I report I also add to my own torrc's
ExcludeExitNodes list because a) I want it to take effect immediately and
b) sometimes the authority operators appear to make exceptions for some
misconfigured/miscreant nodes, and 2) I wasn't really awake yet when I was
composing the alarm.
PrivacyNow is a very high-performance node, and it will be a shame to
lose it as an exit node. (A few hours ago, it was ranked by torstatus as
the #44 node by throughput.) However, its owner/operator clearly does not
want to be contacted about problems, so we aren't really left with much
choice. In any case, it will still be a good entry or middle node for many,
many circuits per second.
So now I guess I should make the request. Unless the authorities know
how to reach the operator of PrivacyNow to get his/her OpenDNS configuration
fixed (or switched to Google's open name servers or something similar), will
the authorities please flag PrivacyNow as a BadExit ASAP?

Scott Bennett, Comm. ASMELG, CFIAG
* Internet: bennett at cs.niu.edu *
* "A well regulated and disciplined militia, is at all times a good *
* objection to the introduction of that bane of all free governments *
* -- a standing army." *
* -- Gov. John Hancock, New York Journal, 28 January 1790 *
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk in the body. http://archives.seul.org/or/talk/