[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: German data rentention law

To: or-talk@xxxxxxxxxxxxx
Subject: Re: German data rentention law
From: Sven Anderson <sven@xxxxxxxxxxx>
Date: Sat, 18 Oct 2008 20:36:00 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sat, 18 Oct 2008 14:36:11 -0400
In-reply-to: <48F9A304.5020104@xxxxxxxxxxxxxxxxxxxx>
References: <48F9A304.5020104@xxxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx


Am 18.10.2008 um 10:49 schrieb Karsten N.:

Some papers of non-gouverment organizations like ULD: "Tor and JAP are
not affected by the telecommunication law, because it is not a
telecommunication service (in the case of law) and tor nodes have NOT
to log."

That's not true, the ULD is a 100% governmental institution (at leastfinancially). Its task is among others to supervise the dataprotection in the government agencies of Schleswig-Holstein (Germanprovince).

Or, if it was more simple for the developer, a feature for exit nodes
to define a country (based on geoip) to reject all exit routes. If all
german relays used this feature, it may work.

This would be a good option anyway. Rejecting exit connections to yourown country would dramatically reduce the investigation requests. Inmy case 100% were because of connections to German servers so far.

Otherwise, all german nodes have to switch to middle man.

I suggest to keep calm. There is a long way to go, before we will havea final judgment about this. And until then there's no need to act.

In general I don't like to create the impression that the logging inTor nodes is so essential for the reliability of Tor. If the trust inTor would be based on the assumption, that the Tor nodes are notcompromised and not logging, the whole concept would be flawed, and Iwould never support it. The new data rentention law is a danger forthe simple one-hop-proxys, but not for Tor. You would need a detailedlog on _circuit_ level of every single node in order to trace it back.I don't even know if Tor is able to create these logs (not with infolevel, what about debug level?). But it's very unlikely that theGerman courts will demand even this. The worst case will be TCPconnections, which are almost useless, since you hardly can correlatein- and outgoing connections. (My node has always 4000-5000 parallelopen connections, and connections to other Tor nodes are persistent.)

This whole law anyway will turn out as a big joke (as usually), sincethere are so many networks that hide thousands of users behind asingle NAT address, which _officially_ don't have to log, because theyare not public. (Like big companies, university networks and studentdormitories, for example.)



Regards,

Sven

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Follow-Ups:
- Re: German data rentention law
  - From: Lexi Pimenidis

References:
- German data rentention law
  - From: Karsten N.

Prev by Author: Re: German data rentention law
Next by Author: Re: German data rentention law
Previous by thread: Re: German data rentention law
Next by thread: Re: German data rentention law
Index(es):
- Author
- Thread