[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: bad exit blacklisting

To: or-talk@xxxxxxxxxxxxx
Subject: Re: bad exit blacklisting
From: slush <slush@xxxxxxxxxx>
Date: Sat, 25 Oct 2008 12:53:35 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sat, 25 Oct 2008 06:53:44 -0400
In-reply-to: <20081025010232.GA8292@xxxxxxxxxxxxxxxxxxx>
References: <bd9056300810231441u34a8cack143f97a40d7fae34@xxxxxxxxxxxxxx> <bd9056300810241410h353b32d8gaf1fdf20520ac7d8@xxxxxxxxxxxxxx> <20081025010232.GA8292@xxxxxxxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

2008/10/25 <phobos@xxxxxxxxxx>

On Fri, Oct 24, 2008 at 11:10:21PM +0200, slush@xxxxxxxxxx wrote 2.5K bytes in 49 lines about:
: > as far as I read Tor documentation, I cannot find mechanism, how can be

: > exit node marked as "Bad exit". Is there any standardized mechanism for
: > detecting bad exits and marking them in directory servers?

I believe the answer is the bad node detection would have to run on the

directory servers.

But it is not implemented anywhere. In soat script is just placeholder function for exporting bad exits, but it is not implemented yet.

: > Im asking because Im working on automatic bad exit detection and Im
: > interesting, how it can be automatically propagated for wide masses of tor
: > users. Instead of "BadTorNodes page" author, im not paranoid with used
: > algorithm and I can publish source codes (after confirmation on live data).

Is this related to torflow or Coding Project #1 at
https://www.torproject.org/volunteer.html.en#Projects ?

You may want to check out torflow at
https://svn.torproject.org/svn/torflow/

Yes, Im working on similar project as soat.py, but with a little different method. The main difference is that Im not comparing html page downloaded via Tor and via direct connection, but I retrieve many copies of the same page via many exit nodes and doing some transformation on that. Using this method, I have less false-positives in case of dynamic page. I think it is the main difference, but there is more little "improvements" (or things with different implementation).

Originally, I was thinking about improvements of existing soat.py, but there is absolutely different access to problematic, so it is easy to write it from scratch. Im just curious, if there is interest from anybody other and if it is teoretically possible to use my work as (part of) detecting mechanism on directory servers. Im writing that as part of my thesis, but I will be glad, if anybody will find useful for self. It can be reason for writing script as fully working application, not just prototype (code snippets), which fulfill requirements of my thesis.

Marek

References:
- bad exit blacklisting
  - From: slush
- Re: bad exit blacklisting
  - From: slush
- Re: bad exit blacklisting
  - From: phobos

Prev by Author: Re: bad exit blacklisting
Next by Author: Re: Introducing Torsocks - Transparent socks for Tor
Previous by thread: Re: bad exit blacklisting
Next by thread: Google searches
Index(es):
- Author
- Thread