[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?

To: "tor-relays@xxxxxxxxxxxxxxxxxxxx" <tor-relays@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
From: "Gary C. New via tor-relays" <tor-relays@xxxxxxxxxxxxxxxxxxxx>
Date: Fri, 24 Dec 2021 08:23:15 +0000 (UTC)
Cc: "Gary C. New" <garycnew@xxxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 25 Dec 2021 10:46:21 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1640334256; bh=NszClxGXalgDSPtSYctPH9VM9c605DXLX53xgDkFK0Q=; h=Date:From:Reply-To:To:In-Reply-To:References:Subject:From:Subject:Reply-To; b=Z2YDFvDqEUOj2Zv/8EF6ZhENCJoFq/lWIYJ26MEsEGm6mv8YtupON1e26C7brJ+6l54NWrXjFhJ9d+PQCCib+tkhWPYx9pC/Ju3LcMZjkziaE+bT8m5MCUNR0SVbJdYcf9SWPEj+IZxklUVJTLbHjAJgj+FbLkNCYe3KzJALbj/WcF+dfaHCCY+djGYZcSEobmyOIrchxRIZEpe+lQlHKR4fU2h7GBNF8sTtYabIN0cCqH51NRgnwez+PQJPI/c7sqXIZhqm4T6XFxPJ15CnX235NhGrLo5J/LNiUvMeuKxFvRNygjQ+/VHn7TbltvF+0C0SnPkE+BpvQ70MGi6bYw==
In-reply-to: <bd5f799837eb077c2054141bcdb334e7@neelc.org>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <c8c03d73ca1a167ed391fe7730636b1d@disroot.org> <163965498909.3548.9259055964111485899@localhost> <2006955693.1571537.1640241729716@mail.yahoo.com> <bd5f799837eb077c2054141bcdb334e7@neelc.org>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Neel,

I get the security vs usability considerations between centralized vs decentralized (or in the case of Tor semi-decentralized) networks. However, at a minimum, doesn't it make sense to exclude publishing address information from Tor metrics, etc, as to stop giving censorship organizations a free handout? Force them to invest resources to setup distributed Tor relays to glean addresses asynchronously in the wild. As it stands, all they have to do is write a simple bot to extract the synchronously published data on a daily basis.

It seems to be an inherent obstacle in design attempting to anonymize a sub-network within an established known super-network.

Thank you for your response.

Respectfully,

Gary

—
This Message Originated by the Sun.
iBigBlue 63W Solar Array (~12 Hour Charge)
+ 2 x Charmast 26800mAh Power Banks
= iPhone XS Max 512GB (~2 Weeks Charged)

On Thursday, December 23, 2021, 10:14:05 PM PST, Neel Chauhan <neel@xxxxxxxxx> wrote:

On 2021-12-22 22:42, Gary C. New via tor-relays wrote:
> I know it might be a fundamental change to the Tor network, but would
> it be possible to obfuscate the Tor bridge/relay addresses with their
> respective fingerprints; similar, to the I2P network? I've often
> thought that this aspect of the I2P network is one that is implemented
> well. Perhaps Directory Authorities could preform fingerprint to
> address resolution? I think it would be extremely beneficial if
> neither bridge or relay addresses were published in the wild. It would
> make great strides in further buffering the Tor network from various
> black-listing/censorship techniques.

The thing is, while Tor itself is decentralized, the directory
authorities and fallback directories are not.

For a Tor client to bootstrap, you need a list of relays to be able to
connect to. And in turn you have to contact the dirauths or the
fallbacks.

While you could use an I2P-style or more recently blockchain-style
setup, I believe there was a reason for Tor to use centralized dirauths.

I can't seem to find the article/FAQ right now, even though I had it a
few years ago. I'm guessing it's to prevent malicious dirauths, unlike
how Bitcoin could get manipulated by bad actors with a decentralized
authority system.

> Respectfully,
>
> Gary

-Neel

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

References:
- [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
  - From: Space Oddity via tor-relays
- Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
  - From: meskio
- Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
  - From: Gary C. New via tor-relays
- Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
  - From: Neel Chauhan

Prev by Author: Re: [tor-relays] How to reduce tor CPU load on a single bridge?
Next by Author: Re: [tor-relays] Tor not starting but log inconclusive
Previous by thread: Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
Next by thread: Re: [tor-relays] [Censorship in Russia] Make HTTPS/Moat captcha more complex?
Index(es):
- Author
- Thread