[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17773 [Tor]: Should clients avoid using guards that lost the Guard flag?

Subject: Re: [tor-bugs] #17773 [Tor]: Should clients avoid using guards that lost the Guard flag?
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sun, 17 Jan 2016 20:56:23 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 17 Jan 2016 15:56:34 -0500
In-reply-to: <044.aeddf6e797708d20e3cbe4bc151ad33e@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.aeddf6e797708d20e3cbe4bc151ad33e@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17773: Should clients avoid using guards that lost the Guard flag?
-------------------------+------------------------------------
 Reporter:  arma         |          Owner:
     Type:  enhancement  |         Status:  new
 Priority:  Medium       |      Milestone:  Tor: 0.2.8.x-final
Component:  Tor          |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:               |  Actual Points:
Parent ID:               |         Points:
  Sponsor:               |
-------------------------+------------------------------------

Comment (by s7r):

 I think we can live with this, given that the goal of 1 entry guard for
 longer time is to make a client not choose so many times. Fast back of the
 envelope calculations tell us that you have less chances of getting a bad
 guard if you stick to one that lost its guard flag as opposite to having
 to choose again from the relays with active Guard flags.

 The fact that if this is done intentionally will make a relay have a very
 small number of dedicated users for the next months is true, but maybe
 it's worth the tradeoff - I don't see how you can make this attack a
 targeted one (not without combining it with other attacks like path bias ;
 guard turnover for which we have proposals). It's a paradox here, if I am
 not targeting someone particular (since I can't with this method), it
 means maybe I am pure bad and just want to mass deanonymize Tor users, in
 which case a very small number of dedicated users isn't attractive. Also,
 I don't see how you can defend against this properly, an operator can just
 keep the guard flag, allow selectively a very small number of dedicated
 users IP addresses at firewall level and drop the rest (will this lose him
 the guard flag if he allows traffic only from some users and directory
 authorities and every IP in the consensus plus every IP address in exit
 list?).

 Another reason to allow this would be that in the future, hopefully we
 will grow significantly in number of relays that we will have to rotate
 the Guard flags from time to time between a n% of the relays in the
 network that fulfill the requirements (maybe a weighted hash ring based on
 shared randomness).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17773#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #17958 [Wiki]: During logon into this trac over Tor - recaptcha hell
Next by Author: Re: [tor-bugs] #18018 [Service - lists]: Please create mailing list for high-volume onion site operators
Previous by thread: Re: [tor-bugs] #17958 [Wiki]: During logon into this trac over Tor - recaptcha hell
Next by thread: Re: [tor-bugs] #17773 [Tor]: Should clients avoid using guards that lost the Guard flag?
Index(es):
- Author
- Thread