[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] Should new exit relays be probed for public DNS resolvers

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] Should new exit relays be probed for public DNS resolvers
From: Nathaniel Suchy <nathanielsuchy@xxxxxxxxxxxxxx>
Date: Thu, 05 Mar 2020 14:20:52 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 05 Mar 2020 09:32:25 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=default; t=1583418056; bh=Q1CquoiEtOAeB/SO+6Gh+JQ5wqlEBTc9Z5yiYpzaMro=; h=Date:To:From:Reply-To:Subject:In-Reply-To:References:Feedback-ID: From; b=RB7jDhHWMbARcEqZliQcqmngJQ1IJdI5ry7+uYFbwIpH2K6vjAffIDOhfj72vg/bh LhXdiLpYW6yOcrJ1/PveM0FX8ggryTL1aznyGsKzxTlEITKC4BcMCgPq8QdeTuuL+L iJ/fg9NIwJMEQpFZkg+5k/KTHLEOPo89BmZspiGg=
Feedback-id: -4dH9Ejyyru9_NVpxb_AbWPCzRCXR-5kihlFd-jXQgZ0modV8vzTAcUe9kRlNrEM1_5tnyRwIOno0iEDm20GOA==:Ext:ProtonMail
In-reply-to: <CAFWeb9Lz5iN3jWy4Hz+gWAABBd21chREo-UuRqU79aOjRZTTHQ@mail.gmail.com>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <mET1tfPxpY3WYWFVOVAAshDFS-7l2xEcuyRyXmfCQ7lTFWo1oNQIZJHZxjn8pvNSFJA_zk61S5X0vqU8iDdTtHlsYYhCwD8KNUHcmO0p-5Y=@protonmail.com> <CAFWeb9Lz5iN3jWy4Hz+gWAABBd21chREo-UuRqU79aOjRZTTHQ@mail.gmail.com>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

It’s not a threat model issue. It’s more of a let’s make Tor less dependent on a few public resolvers. Running our own resolvers just makes more sense at such a scale.

Cordially,
Nathaniel Suchy (they/them)

Sent from ProtonMail Mobile

On Thu, Mar 5, 2020 at 1:59 AM, Alec Muffett <alec.muffett@xxxxxxxxx> wrote:

Hey Nathaniel,

What's your threat model here? What would you want to achieve?

On Wed, 4 Mar 2020, 17:24 Nathaniel Suchy, <nathanielsuchy@xxxxxxxxxxxxxx> wrote:
There has been discussion over the past several years that the Tor network should not use public DNS resolver as it has security implications on the Tor network (https://medium.com/@nusenu/who-controls-tors-dns-traffic-a74a7632e8ca). Should new Tor Exit Relays be probed and not included in the consensus until they're running their own DNS resolver and not relying on a public one?
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Attachment: publicKey - nathanielsuchy@protonmail.com - 556d8844.asc
Description: application/pgp-keys

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] Should new exit relays be probed for public DNS resolvers
  - From: Alec Muffett
- Re: [tor-relays] Should new exit relays be probed for public DNS resolvers
  - From: Iain Learmonth

References:
- [tor-relays] Should new exit relays be probed for public DNS resolvers
  - From: Nathaniel Suchy
- Re: [tor-relays] Should new exit relays be probed for public DNS resolvers
  - From: Alec Muffett

Prev by Author: Re: [tor-relays] Relay Or/Dirport Unreachable
Next by Author: [tor-relays] Should new exit relays be probed for public DNS resolvers
Previous by thread: Re: [tor-relays] Should new exit relays be probed for public DNS resolvers
Next by thread: Re: [tor-relays] Should new exit relays be probed for public DNS resolvers
Index(es):
- Author
- Thread