[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Directory authority of type bridge?

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Directory authority of type bridge?
From: Tim Wilson-Brown - teor <teor2345@xxxxxxxxx>
Date: Wed, 11 May 2016 14:02:58 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 11 May 2016 14:03:17 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:message-id:references:to; bh=qE8deh4vMlRybIgeFWKAipmx1UBB4M3d3SF72K6H4HQ=; b=tKV52t9UdziZv6R+TXxkzvCaL7KxJVGgdsM8DTzx4Pvf4X+JpzZwrCTfGCPCwsjNtu P7CPi9AS2sDHIAaUB3M67eILHQ6krqyri4qixNv9UrOQIQv2hiMnTiCC5oXGulCPRfhQ vx9X2ii1mR4kiVXc/GUB7+qm1VascoBpnQRwzQOdCc9GZMe+HNHLVBGIAteQGSQFYZFF HAl3r0X7DSxzyhid71W6jxxsHBu6+aSDiVMQEoC/XAyQigpWkuPTaJg/8y+A0WfBM9XD CIApEFGc4DEub/DZXexxO5gzj1ZdK3jLR8dIx68ZMOiW3NxMxTyi8xxGuweAGwAZOYoa DBxA==
In-reply-to: <9319B02A-2F35-463E-B755-42E05015BD7C@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CAP-tar=xi14_OGLRTgFh65sWyZTmRvmLpZkZKj5UOwiLdgjRww@xxxxxxxxxxxxxx> <9319B02A-2F35-463E-B755-42E05015BD7C@xxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> On 11 May 2016, at 12:49, Tim Wilson-Brown - teor <teor2345@xxxxxxxxx> wrote:
> 
>> 
>> On 11 May 2016, at 12:38, Nicholas R. Parker (RIT Student) <nrp7859@xxxxxxx> wrote:
>> 
>> Hey again all, got another one for you.
>> When we've started adding bridges to the network, they send a warning "Publishing server descriptor to directory authorities of type 'Bridge', but no authorities of that type listed!"
>> 
>> Not sure how to have a directory authority as a bridge type given that if you set BridgeRelay 1 on an authority it drops the DirPort and just becomes a bridge relay.
>> 
>> How does one list an authority as a bridge type?
> 
> Have you read the entries about bridge authorities in the tor manual page?
> https://www.torproject.org/docs/tor-manual.html.en
> 
> GENERAL OPTIONS
> 
>       AlternateBridgeAuthority [nickname] [flags] address:port  fingerprint
>           These options behave as DirAuthority, but they replace fewer of the
>           default directory authorities. Using AlternateDirAuthority replaces
>           the default Tor directory authorities, but leaves the default
>           bridge authorities in place. Similarly, AlternateBridgeAuthority
>           replaces the default bridge authority, but leaves the directory
>           authorities alone.

Hmm, and you might want this one with the bridge flag:

       DirAuthority [nickname] [flags] address:port fingerprint
           Use a nonstandard authoritative directory server at the provided
           address and port, with the specified key fingerprint. This option
           can be repeated many times, for multiple authoritative directory
           servers. Flags are separated by spaces, and determine what kind of
           an authority this directory is. By default, an authority is not
           authoritative for any directory style or version unless an
           appropriate flag is given. Tor will use this authority as a bridge
           authoritative directory if the "bridge" flag is set. If a flag
           "orport=port" is given, Tor will use the given port when opening
           encrypted tunnels to the dirserver. If a flag "weight=num" is
           given, then the directory server is chosen randomly with
           probability proportional to that weight (default 1.0). Lastly, if a
           flag "v3ident=fp" is given, the dirserver is a v3 directory
           authority whose v3 long-term signing key has the fingerprint fp.

           If no DirAuthority line is given, Tor will use the default
           directory authorities. NOTE: this option is intended for setting up
           a private Tor network with its own directory authorities. If you
           use it, you will be distinguishable from other users, because you
           won't believe the same authorities they do.

Tim

Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B
ricochet:ekmygaiu4rzgsk6n

Attachment: signature.asc
Description: Message signed with OpenPGP using GPGMail

_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Directory authority of type bridge?
  - From: Nicholas R. Parker (RIT Student)
- Re: [tor-dev] Directory authority of type bridge?
  - From: Tim Wilson-Brown - teor

Prev by Author: Re: [tor-dev] Directory authority of type bridge?
Next by Author: [tor-dev] Fewer Failures in Shared Random
Previous by thread: Re: [tor-dev] Directory authority of type bridge?
Next by thread: [tor-dev] RFC-ish: basket2 (aka obfs5)
Index(es):
- Author
- Thread