[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] [Tails-dev] Tails vs the capacity of the Meek bridges

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] [Tails-dev] Tails vs the capacity of the Meek bridges
From: anonym <anonym@xxxxxxxxxx>
Date: Tue, 24 Mar 2020 12:28:23 +0100
Cc: The Tails public development discussion list <tails-dev@xxxxxxxx>
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 24 Mar 2020 07:28:42 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=riseup.net; s=squak; t=1585049307; bh=JjzoMqhiMUhgq1ECS/IaVsBA3b2Fh0gdjpeouKlJFFs=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From; b=M+NUKpk3SDTxG9oIh/MibUtVl2+Rds3OAqg9UVn4rMYQ3/WVEte6csAHkXetJQi0r OY8nWLAGwpA+SwWKMHb2Fg1MOjeaVl2HwbZd9BOQPTG3DB3+zaZM3QBuj7vYVzns3p qeWPPpI6hgAAz5dUB/9hLoTN4I6563LfUUcjRUFQ=
In-reply-to: <93cd0bb7-1949-4bf4-5b96-7facd358ed83@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <d91ecf13-a5be-521b-342a-17ecadaca231@riseup.net> <bfa88811-7d8e-6bdb-6172-f5937b2a8092@pimienta.org> <93cd0bb7-1949-4bf4-5b96-7facd358ed83@torproject.org>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

Iain Learmonth:
> Hi,
> 
> On 20/03/2020 15:30, sajolida wrote:
>>> In Tails' threat model it is assumed that adversaries monitor the default bridges provided by the Tor Browser, and that our users want to avoid detection of that, so we are not interested in adding the default bridges to Tails
>>
>> We're not offering the default bridges in Tails also because it's
>> impossible right now to store your bridge configuration in the
>> Persistent Storage.
> 
> Maybe I've overlooked something obvious, but could you use Moat?
> 
> https://gitweb.torproject.org/bridgedb.git/tree/README.rst#n391
> 
> This would use meek to fetch the bridges, but then you have non-default
> bridges for the rest of the session. It can be automated as part of the
> Tor start-up, but you do need to solve a CAPTCHA.

Nothing is preventing us except more work. :) Essentially, Tails only allows the tor process to talk clearnet as part of its Tor enforcement [1], which makes this a bit trickier than in less locked down environments that Tor Launcher is designed to run from. But it indeed looks like also adding Moat support (and making it the default, I think) is the way for us to go, so thanks for the reminder! :)

Cheers!

[1] https://tails.boum.org/contribute/design/Tor_enforcement/
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Tails vs the capacity of the Meek bridges
  - From: anonym
- Re: [tor-dev] [Tails-dev] Tails vs the capacity of the Meek bridges
  - From: sajolida
- Re: [tor-dev] [Tails-dev] Tails vs the capacity of the Meek bridges
  - From: Iain Learmonth

Prev by Author: Re: [tor-dev] Tails vs the capacity of the Meek bridges
Next by Author: [tor-dev] Chutney tests fail for tor/maint-0.3.5 (bug #33677)
Previous by thread: Re: [tor-dev] [Tails-dev] Tails vs the capacity of the Meek bridges
Next by thread: Re: [tor-dev] Tails vs the capacity of the Meek bridges
Index(es):
- Author
- Thread