[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Hidden service policies

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Hidden service policies
From: Mike Hearn <mike@xxxxxxxxxx>
Date: Mon, 21 Jul 2014 11:42:29 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 21 Jul 2014 05:42:38 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=nL25GftMjvpL1QpQZLMrzsMpBASPaggPDwwi9G8IDWs=; b=d2pcnO9Jrv4D918mIAYBywx4usRcZ2UUY99ehM8C1jfFNg8NTK4Evae7H+eC1HdDqE HQXvVXswCpeUAHofh/BsgQSTt/5k4NBxRPFBkM+oONlEB+tpbd/z+fPvvYDOCRcrAyC2 B/Iapicy2Hl5RAeaDQB2UyCQ6kJbQgaQeVaHg/h1Kpkw1+X6dS8WczVKWsTBM1uvB7GO eiXkBOLykRKCn08EDyDIpWahBq89CN+AlQIXCZxiPUhcP7R73fXafACEOOM0OzZEnH61 YG6HnUPPe5EHQNDnPusnsG+CVf5GflWBLGrmHlNVtZNgZx+aXQ0E6+JTosQcJJ4ySojD FL8A==
In-reply-to: <20140720225707.GB28016@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CANEZrP2jriLF-mXYTg=B5kjJ2_PPOzNOZVrnRXc_T1gH7pA1MQ@xxxxxxxxxxxxxx> <20140720225707.GB28016@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

This isn't about 'acceptable usage of Tor', this is necessary compromise

to limit exit operators' exposure to ISP harrassment.

Even if we accept your premise that no exit operator cares about internet abuse, it's still the same thing. ISP's define what is acceptable usage of their internet connections and by implication, what is acceptable usage of the Tor exit. Tor could ignore what ISPs want (which is usually quite reasonable), but then "no Tor" clauses in ISP acceptable usage policies would just become even more prevalent.

Â

The ability to do this implies the ability for intro points to learn the
identity public keys of hidden services they are introducing. ÂUnfortunately,
I believe this sort of enumeration attack is possible with the current HS
protocol, but I think proposal 224 will fix it.

It is currently possible and I am aware of proposal 224, which is why I'm bringing this up now. I don't think this is something that should be fixed without a lotÂof thought given to the consequences. I am by the way quite aware of all the counter arguments already, but someone has to play the devil's advocate here.

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Hidden service policies
  - From: Mike Hearn
- Re: [tor-dev] Hidden service policies
  - From: Andrea Shepard

Prev by Author: [tor-dev] Hidden service policies
Next by Author: Re: [tor-dev] Hidden service policies
Previous by thread: Re: [tor-dev] Hidden service policies
Next by thread: Re: [tor-dev] Hidden service policies
Index(es):
- Author
- Thread