[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Hidden Service and exit circuit questions?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Hidden Service and exit circuit questions?
From: "me" <tortalk@xxxxxxxxxxxxxxxxxxxxxxxx>
Date: Mon, 20 Jul 2015 20:31:47 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 20 Jul 2015 20:32:02 -0400
Importance: Normal
In-reply-to: <07b401d0c31b$5347c490$f9d74db0$@gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <MTAwMDAzNS5jb3VsZGJl.1437415566@quikprotect> <07b401d0c31b$5347c490$f9d74db0$@gmail.com>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>


>> can an exit node initiate contact with my HS without ever going through a
> rendezvous
>
> No, there is a handshake process needed to establish a Tor connection
> between the two machines, and that handshake only works through the
> rendezvous point.  See
>
> https://www.torproject.org/docs/hidden-services.html.en
>
> https://gitweb.torproject.org/torspec.git/tree/rend-spec.txt

Yeah I understand that's the way it's "intended" to work, but:

   https://gitweb.torproject.org/torspec.git/tree/rend-spec.txt

       ... 1.11. Creating streams

   ...From then on, Bob's OP treats the stream as an
   ordinary exit connection.
   [ Except he doesn't include addr in the connected cell or the end
     cell. -RD]

   Alice MAY send multiple RELAY_COMMAND_BEGIN cells along the circuit, to open
   multiple streams to Bob. ...

Since there is already an established circuit between the machine running the
Tor service and an exit node, I'm thinking that the exit node may be able to
use the existing circuit to access the HS port over the 3-hop circuit without
ever going through the normal 6-hop rendezvous?

Can an exit node initiate a stream back? I understand that the newest nmap
will support scanning through Tor. Will exit nodes be able to scan back?

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Hidden Service and exit circuit questions?
  - From: Allen

References:
- Re: [tor-talk] Hidden Service and exit circuit questions?
  - From: me
- Re: [tor-talk] Hidden Service and exit circuit questions?
  - From: Allen

Prev by Author: Re: [tor-talk] Hidden Service and exit circuit questions?
Next by Author: [tor-talk] OFTC and Tor
Previous by thread: Re: [tor-talk] Hidden Service and exit circuit questions?
Next by thread: Re: [tor-talk] Hidden Service and exit circuit questions?
Index(es):
- Author
- Thread