[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] New Identity button for multiple TorPorts? - was: Review request: TorVM implementation in Qubes OS: Vidalia

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] New Identity button for multiple TorPorts? - was: Review request: TorVM implementation in Qubes OS: Vidalia
From: adrelanos <adrelanos@xxxxxxxxxx>
Date: Fri, 19 Oct 2012 13:18:42 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 19 Oct 2012 09:18:29 -0400
In-reply-to: <50812C90.40709@xxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <5079A1E4.8090904@xxxxxxxxxxxxxxxxxxxx> <507DB055.9010603@xxxxxxxxxx> <50812C90.40709@xxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

Abel Luck:
> Moreover, wrt the New Identity button. With several client VMs, multiple
> apps using different SOCKSPorts, the behavior of New Identity is confusing.
> 	Does pushing it tear down and construct new circuits for
> 	everything? Only the TransPort? Only X?

Maybe the Tor developers could elaborate on that?

From my observations...

The whole stream isolation and switch identity works very well.

You can open "100" SocksPorts (or TranPorts etc.). When you look into
arm, no matter if you have "100" or "1" SocksPort, Tor will not create
any more circuits.

One SocksPort with two different socks auths is actually (internally)
two TorPorts (circuits).

Or one TransPort with three different client addresses is actually three
different TorPorts.

Only if you have "100" SocksPorts and "100" client applications actually
using them at the same time, Tor will open "100" circuits.

All (dirty?) circuits are changed every 10 minutes.

I think Tor has some logic to remember, which circuits were recently
used and are now dirty. From testing: if you issue new identity, this
will switch circuits for all internal TorPorts, which are considered
dirty. Maybe also the idle one (clean) circuits get switched.

The ones, which were not actively needed recently ("100" SocksPorts) are
neither created nor switched.
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Review request: TorVM implementation in Qubes OS
  - From: Abel Luck
- Re: [tor-talk] Review request: TorVM implementation in Qubes OS: Vidalia
  - From: adrelanos
- Re: [tor-talk] Review request: TorVM implementation in Qubes OS: Vidalia
  - From: Abel Luck

Prev by Author: Re: [tor-talk] Review request: TorVM implementation in Qubes OS
Next by Author: Re: [tor-talk] Review request: TorVM implementation in Qubes OS
Previous by thread: Re: [tor-talk] Review request: TorVM implementation in Qubes OS: Vidalia
Next by thread: Re: [tor-talk] Review request: TorVM implementation in Qubes OS
Index(es):
- Author
- Thread