[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-relays] Grouping cloud relays running within same provider

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-relays] Grouping cloud relays running within same provider
From: mr.curtis@xxxxxxxxxxxx
Date: Fri, 18 Apr 2014 15:31:53 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 18 Apr 2014 15:32:07 -0400
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=urssmail.org; s=default; h=Content-Transfer-Encoding:Content-Type:MIME-Version:To:From:Subject:Date:Message-ID; bh=gwil2AhMU/HKTfr8qtjFCyirLAQHRwxGBnVk0dDmohs=; b=Bg4zTOu2XIlhFBtOWUjpqT0HHkeCAYNdfPyPV8GOUrtsDgH6NAJyRlab3jMK07Pf6OazCk4eAeIYVzgjz1Km8xav9QaRZ7EZdAvjJ4B9hYFAQh92zW7cui7emx1V7jsZvgnqBt3E2SHzN4nddHAlbKMz1jUJAmTtpZDh8K8sDkw=;
Importance: Normal
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: SquirrelMail/1.4.23 [SVN]

Many people are running Tor relays on virtual servers "in the cloud",
using VPS providers like Amazon EC2, Rackspace, Linode, etc. Most major VPS
providers offer virtual servers in multiple geographical locations,
but they are still controlled by one entity, which of course ultimately
have total access to any storage (RAM and disk) of any customer VPS,
easily compromising any crypto key material.

I don't think it is necessarily that bad to trust VPS providers (and
they often are a great way to get excellent bandwidth cheaply), but
I feel it would be important to somehow make sure Tor users don't end up
having circuits that all go through relays running on e.g. EC2. Same
way you're supposed to group your own relays with MyFamily.

Is there any way currently to do this, or are there already some
safeguards in place?


_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Grouping cloud relays running within same provider
  - From: Paul Staroch

Prev by Author: Re: [tor-relays] MaxAdvertiseBandwith
Next by Author: Re: [tor-relays] Grouping cloud relays running within same provider
Previous by thread: Re: [tor-relays] False warnings about inaccurate clock
Next by thread: Re: [tor-relays] Grouping cloud relays running within same provider
Index(es):
- Author
- Thread