[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Update on 259

To: George Kadianakis <desnacked@xxxxxxxxxx>
Subject: Re: [tor-dev] Update on 259
From: Ola Bini <obini@xxxxxxxxxxxxxxxx>
Date: Fri, 8 Apr 2016 08:44:52 -0500
Cc: fanjiang@xxxxxxxxxxxxxxxx, tsilva@xxxxxxxxxxxxxxxx, George Kadianakis <asn@xxxxxxxxxxxxxx>, tor-dev@xxxxxxxxxxxxxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 08 Apr 2016 09:52:48 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=thoughtworks-com.20150623.gappssmtp.com; s=20150623; h=date:from:to:cc:subject:message-id:references:mime-version :content-disposition:in-reply-to; bh=78Cw/F7awtys3shJQkCFM9OpNLhOzs7EUDxpSoQ3obw=; b=nSHXClGVU7XmSwhP2vc9JowwCxSSSgg1Xk+rLN4gjcd7xZJlJ7YdC/rLNT9IyLPmpy JMqTfi/whZeOY4GMkJzQ8Pc0csIUg9L+kMdSMuRfMINmuSTfC9hKoqZu3eyQEKIipW0H QyV5XrWNq2pjxxL82WZOW9uckV2+vYzSK2z7rZFSwqpjaVahVzgtemwCpjF2Y/kfEKT8 c2KjPvpmzs3hzUyjfZNs583ODF78o1ebdjXzq3fO0UPwlYgpCfrtqD4z77XMhrBkZ9JS Uxx8o4FQbUzdkQxWM7+fiGiq7mzhTUUDMIV5KxlQCuLEBMjLTSQUEpmffYhjEwBXMoQ1 bWiw==
In-reply-to: <87oa9kcnvw.fsf@xxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <20160405164113.GI5846@hidden> <87a8l6ewq6.fsf@xxxxxxxxxx> <20160406130830.GD5136@hidden> <87oa9kcnvw.fsf@xxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> 
>     - Directory guards are 85% of total current guard bandwidth.
>     - Guards with ORPorts on 80/443 are 42% of total current guard bandwidth.
>     - Guards on IPv6 are 20% of total current guard bandwidth.
>     - Guards both on 80/443 and on IPv6 are 8% of total current guard bandwidth.

Useful info, thanks.
This tells us it's very unlikely that someone will not have any
dirguards, or dystopic guards or ipv6 guards. And if we make the
sample set size large enough, something like 50 guards - we are very
likely to have all capabilities.

> With the above probabilities, everytime you sample a guard you have 20%
> probability for it to be an IPv6 guard. To get 4 of them, you will first need
> to sample a lot of guards (like 20 or so, but some binomial distribution magic
> is required to get the exact probabilities) and add them to your sampled guard
> set. I wonder if that's worth it.
Maybe, maybe not. I don't think the problem of sampling until we have
enough to match the filter is a big problem actually.

> Maybe if we have a single guard that satisfies our filters in our sampled guard
> list, we should use that guard instead of sampling for more? I don't exactly
> see value in sampling and exposing ourselves to additional guards if we have
> one that we like (and we might have even connected to in the past).
True, if we have one and that works - all fine with me. The problem is
that IF that guard doesn't work, we have no fallback mechanism to
sample more guards, so we will never correct for that circuit
building.

> Symmetrically, I'm also not sure what's the right thing to do if we have zero
> guards that satisfy our filters in our sampled guard set. Should we start
> sampling randomly till we hit a guard that satisfies us, or should we sample
> directly from the correct set (e.g. only from the set of IPv6 guards). I'm
> still not sure about this.
I'm much more in favor of sampling in general, rather than trying to
hit the specific thing. If we sample in general, we will not skew the
sampled set at least.

Cheers
-- 
 Ola Bini (https://olabini.se)

 "Yields falsehood when quined" yields falsehood when quined.

Attachment: signature.asc
Description: PGP signature

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- Re: [tor-dev] Update on 259
  - From: Ola Bini
- Re: [tor-dev] Update on 259
  - From: George Kadianakis

Prev by Author: Re: [tor-dev] Update on 259
Next by Author: Re: [tor-dev] Is it possible to leak huge load of data over onions?
Previous by thread: Re: [tor-dev] Update on 259
Next by thread: [tor-dev] extension for chrome and mozilla
Index(es):
- Author
- Thread