Re: [tor-relays] specifying your own entrance and exit nodes

Subject: Re: [tor-relays] specifying your own entrance and exit nodes

Date: Thu, 11 Dec 2014 04:08:15 +0100

Delivery-date: Wed, 10 Dec 2014 22:09:12 -0500

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:content-type; bh=kwjuUY0sSc9KJG/vr7Sr5Atuy7dUWYxAkrgVx7OnmVA=; b=mjbSZSQcR9im8sTl61KuLqbwC9Sj5hmqhupVgWwaD5vsJtr4vQRDHJZXtgFHu+FTIE CLzo7yzUU62oA3wn63D72JP4B5XuDh6yZXKxkzk6T/rW/q2AzWE3L9sGmGt/+n3h5nmi w4FRK3cFfUYE3gUFapIFt5bBj8XJj1ZCDSCVnnytbxvoAw3tjEBpo0pu4OBjzy1Ql3AS 8mnqAzStKqa/bLSPo9aEnyyl38QK1ZbdVU/sR6u1c66KBzlpyz8LgDFl20AeBhOPBg4r TqmqmBOddClVdTanAnX42SM+DJpOLABgLip+jFitdpVwONBj+HOOAmhQjbZydWqIOG4e pOeQ==

In-reply-to: <5488E95D.1050000@xxxxxxxxxxxxxxx>

List-archive: <http://lists.torproject.org/pipermail/tor-relays/>

List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>

List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>

List-post: <mailto:tor-relays@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>

References: <op.xqn670ltbgbjo9@xxxxxxxxxxx> <CAOmikWFKfEQxyC_u4B1DPD_158EdciAmYUiADmevvAzFBMmctg@xxxxxxxxxxxxxx> <5488E95D.1050000@xxxxxxxxxxxxxxx>

Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx

Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Inline below.

On 11 December 2014 at 01:46, tor-exit0 <tor-exit0@xxxxxxxxxxxxxxx> wrote:

On 12/10/2014 4:52 PM, usprey wrote:

> I do not have a full understanding of how the DirAuth works, but how
> about an out of band verification process, to ensure the
> trustworthiness, for exit nodes specifically. This would minimize the
> hazzle for people who wishes to use trusted exit nodes, and maximize the
> number of explicitly trusted exit nodes.

How would the trust be quantified by such a verification process?

You could use existing web of trust systems to let maintainers sign the relays fingerprint.

In addition to this users could also sign the fingerprint and the exit would first be flagged trusted when a critical mass of users have signed.

I'm aware this breaks anonymity, but would be a way to flag an exit as trusted.

For
example, how would this prevent the operator of a good exit from
changing their mind about tampering with traffic or the cooperation of
one or more exit owners in monitoring or sharing traffic information for
correlation?

It won't, but the maintainer would be putting her name and reputation on the line, in the web of trust fingerprint scenario above. Code words for trust is openness and accountability.Â

I'm not aware how one acquires a bad exit flag, but it should be possible to automate tests verifying non-interference with exit connections.

I'd also be curious how such a system would stand up in the
event that control over a validated exit is compromised without the
owner realizing it.

I suspect that most people contributing +100Mbps bandwidth, are in some way IT professionals and know what they are doing and have followed the general guidelines for physical, network and software security.

A signing process for a maintainer could also include a statement of compliance with specific guidelines.

It seems to me that most validation techniques offer
a trade off between accountability and anonymity which may also pose a
concern for some people.

Definitely, why it shouldn't be mandatory, but a way to flag trusted and accountable exits.

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

_______________________________________________ tor-relays mailing list tor-relays@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays