[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
From: "l.m" <ter.one.leeboi@xxxxxxxx>
Date: Mon, 13 Apr 2015 13:15:51 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 13 Apr 2015 13:16:07 -0400
In-reply-to: <552AFCCA.6040609@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <5527BB80.8010708@xxxxxxxxxxxxxxxxxxxxx> <20150410183853.GA32173@xxxxxxxxxx> <552820C1.8050203@xxxxxxxxxxxxxxxxxxxxx> <20150410215018.F057CC0D3A@xxxxxxxxxxxxxxxxx> <5528C834.7020305@xxxxxxxxxxxxxxxxxxxxx> <552AFCCA.6040609@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Hi Yuri,

"Yuri"  wrote:
>I suggested adding new signal to also terminate old
>connections. 
>https://trac.torproject.org/projects/tor/ticket/15660

The problem of closing the connections gracefully is generally left to
the application. In tor's spec it's explicitly stated that it's the
responsibility of the application to gracefully handle connection
failure. In Tor Browser, and every other browser for that matter,
there are exploits that can leave unclosed connections. Tor Browser
deals with this by explicitly closing the connections associated with
a tab, for all tabs. This works as expected--allowing dirty, but
unused circuits to expire (also gracefully).

The problem with the feature that you propose is that it breaks a
major functionality of Tor. By default all traffic directed at a
particular socks port shares circuits. This means that all
applications that use, say, socks port 9150 will have their
application streams mixed together. This can help in some (limited)
ways to obfuscate the traffic. For example, an exit has no way of
knowing how many clients are sharing a Tor instance. The exit only has
the unique circuit id to say the streams are related in some way.

Explicitly closing circuits completely would break third-party
applications in unpredictable ways. It would generate errors that
would lead to posts to tor support describing weird application
behaviour. On the other hand explicitly closing application related
streams requires tor to be aware of the processes using it. Which
means additional logic to handle not just source port per application
stream but also source address (for the shared tor instance). If
you've seen the backlog of tickets you would understand why a major
change like this is not ideal.

If there's a problem. Either of applications not closing the
connection, or a server not closing the connection. These are problems
that should be fixed--not hidden by tor. That isn't to say what you
propose isn't a good idea, just it might be better left to custom
controllers. I think tor-devs might prefer to avoid feature creep.
--leeroy
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: Yuri

References:
- [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: Sophie Hassfurther
- Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: Sukhbir Singh
- Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: Sophie Hassfurther
- Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: l.m
- Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: Sophie Hassfurther
- Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
  - From: Yuri

Prev by Author: Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
Next by Author: Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
Previous by thread: Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
Next by thread: Re: [tor-talk] TorBirdy seems to connect to the same exit node again and again
Index(es):
- Author
- Thread