[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Grouping cloud relays running within same provider

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Grouping cloud relays running within same provider
From: mr.curtis@xxxxxxxxxxxx
Date: Sat, 19 Apr 2014 09:31:44 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 19 Apr 2014 09:31:58 -0400
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=urssmail.org; s=default; h=Content-Transfer-Encoding:Content-Type:MIME-Version:To:From:Subject:Date:References:In-Reply-To:Message-ID; bh=1UBeyq2z5NzsrRf2Po89/KPu7VKXU7f2ByscV/uhWik=; b=ngndzDVJm6BhGa0sFq34PkF0Z83GDbTs1rIi/sYpHYKLDvRkk4y50GcrP02KE1XVl+G0uRd/kLix9ZF7S1xmROWYeWTL9r4uQKDP9LVuFUHk8gLHJsvnf1Z0X3BH/bOfendM/JDggRTkydY8zIeahPtQmFNpIRG+qq2ROaH/O+w=;
Importance: Normal
In-reply-to: <535184D9.2040300@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <e47f428cf32cdd11cfa2474f6d5e890c.squirrel@xxxxxxxxxxxxxxxx> <535184D9.2040300@xxxxxxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: SquirrelMail/1.4.23 [SVN]

> In its default configuration, Tor ensures that each relay in a circuit
> belongs to another /16 subnet (cf. Tor Path Specification [1], section
> "2.2. Path selection and constraints"). However, in the case of Amazon
> EC2, this constraint does not suffice as Amazon uses IP addresses from
> several different /16 subnets.

As does all of the bigger VPS providers that have connectivity in multiple
countries. But the servers themselves are probably centrally managed
by one company entity -- typically in the US. I would not be surprised
if a single evil sysadmin could access any hypervisor machine having Tor
relays running on them and steal their keys, without the relay operator
noticing anything.


_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] Grouping cloud relays running within same provider
  - From: mr . curtis
- Re: [tor-relays] Grouping cloud relays running within same provider
  - From: Paul Staroch

Prev by Author: [tor-relays] Grouping cloud relays running within same provider
Next by Author: Re: [tor-relays] A few questions about my setting up my first Tor relay.
Previous by thread: Re: [tor-relays] Grouping cloud relays running within same provider
Next by thread: Re: [tor-relays] A few questions about my setting up my first Tor relay.
Index(es):
- Author
- Thread