Re: [tor-dev] Entry/Exit node selection

Subject: Re: [tor-dev] Entry/Exit node selection

From: Tim Wilson-Brown - teor <teor2345@xxxxxxxxx>

Date: Tue, 19 Jan 2016 09:24:05 +1100

Delivery-date: Mon, 18 Jan 2016 17:24:23 -0500

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:message-id :references:to; bh=n/W/3CxKk9oeQls//LJrbs+mSb+CRjiXDCRBuskUV6g=; b=c/DPfOvOpzYyLhI9+R8dSwaa+SIWLuLBALb9CVGO3+4IHbRJtZVIqQZcu0T38Ge8S5 W6UFRxVYrFa2wPPyX5yGiGP0KKXhnfK/rmBTAWeii3KNMs3W9WlBcw+8ruwhpJcc9Eyn 4aGAJ6UAaJ6lhWUYIrs6KVE1a9+u2pvea4XDmlD94dBlV6CquhUrCPRk6yMqEaitGcYl cESmBX2TM9Kfa0dUbvKVz6l01AD0JDFG0copSo5Au5pTv8nU0oK61bOsXA8RxKD2Tn/a E4XrnLvuCYkSLmCPAR7aLGrTK68SdpmK39vhShfjr8p2Cnzm1YmskuFQdaUFRKCZCn5s uRCw==

In-reply-to: <CAKBzSo6n6JdGGVhP8jWh1hZm7obrJeO2a==WvgTo0fcPDgXvCg@xxxxxxxxxxxxxx>

List-archive: <http://lists.torproject.org/pipermail/tor-dev/>

List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>

List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>

List-post: <mailto:tor-dev@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>

References: <CAKBzSo6n6JdGGVhP8jWh1hZm7obrJeO2a==WvgTo0fcPDgXvCg@xxxxxxxxxxxxxx>

Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx

Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

On 19 Jan 2016, at 04:53, Evan d'Entremont <evan@xxxxxxxxxxxxxxxxxx> wrote:

What threat is Tor trying to defeat? Region locking or nation states? If the former, then great, select an exit country, or just use a VPN. If the latter, perhaps that actual threat profile should be taken into account.

Is there any reason why Tor doesn't select exit nodes which are as close as possible to the intended host?

If I connect to Tor and request a resource from a server on ISP A, would in not make sense to enforce an exit node also on ISP A, or if not, as close as possible?

As well, entry guards should be as close as possible to the user, limiting the ability of others to log the connection.

In short, it's safer that only my ISP see a connection rather than my ISP, a backbone provider, the entry guard's ISP, etc. Systems like XKeyscore wouldn't even see the traffic in this case. It seems that selecting an exit country may actually be detrimental to anonymity by forcing traffic over the (monitored) internet backbone.

It depends on your threat model.

My country requires ISPs to retain connection information, so choosing a nearby entry to me, and a nearby exit to a website in this country, would be very detrimental to my anonymity.

Tim

Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B

teor at blah dot im
OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

_______________________________________________ tor-dev mailing list tor-dev@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev