[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #10722 [Tor]: Wanted to contact directory mirror XXX ... but but it's in our ExcludedNodes list and StrictNodes is set.



#10722: Wanted to contact directory mirror XXX ... but but it's in our
ExcludedNodes list and StrictNodes is set.
------------------------+--------------------------------------------
     Reporter:  mr-4    |      Owner:
         Type:  defect  |     Status:  needs_review
     Priority:  normal  |  Milestone:  Tor: 0.2.4.x-final
    Component:  Tor     |    Version:  Tor: 0.2.4.19
   Resolution:          |   Keywords:  tor-client tor-hs 024-backport
Actual Points:          |  Parent ID:
       Points:          |
------------------------+--------------------------------------------

Comment (by nickm):

 Replying to [comment:9 mr-4]:
 > Will there be a fix on the AlternativeHSDir not working?

 No.  I'll try to expand on my explanation above.

 AlternativeHSDir (and the very notion of an "hidden service authority")
 were a part of the version 0 hidden service directory design.  In the very
 first version of hidden services, hidden service descriptors were stored
 on each of three "hidden service authorities".

 Obviously, that's not such a great idea.  It doesn't scale, and it gives
 the authorities too much ability to censor, enumerate, or measure the
 usage of hidden services.

 So in later versions of the hidden service directory system, we got rid of
 the whole idea of hidden service authorities.  Instead, hidden service
 desciptors are stored at a deterministically chosen, regularly changing
 set of Tor nodes, chosen from among nodes with the HSDir flag.  These
 "HSDir" nodes are not authorities.

 This "version 2 hidden service directory" protocol has been supported
 partially since 0.2.0 and completely since 0.2.1.  Since 0.2.2, no other
 hidden service directory protocol has been used.  In #10841 and #10881, we
 dropped support for the unused-since-0.2.1 old protocol, since nobody's
 using it any more.

 Okay, so that's why AlternativeHSDir has no meaning with Tor 0.2.2 and
 later.  Note that with the current, "version 2" hidden service directory
 design, there's no comparable notion of specifying a single server to
 fetch hidden service descriptors from, because no single server *has* all
 of the hidden service descriptors: each hidden service uploads to a
 different subset of hidden service directories (that is, Tor nodes with
 the HSDir) all the time.

 I hope that made sense?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10722#comment:11>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs