Re: [tor-dev] "old style" hidden services after Prop224

Subject: Re: [tor-dev] "old style" hidden services after Prop224

From: Razvan Dragomirescu <razvan.dragomirescu@xxxxxxx>

Date: Tue, 13 Sep 2016 15:21:36 +0300

Delivery-date: Tue, 13 Sep 2016 08:22:02 -0400

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=veri-fi.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=AGNJp0LUmqgMZfuB4VRWSBG1JwH8zhJfX91jnY4+ja4=; b=ORWbxxehCDjP3Ar0wwwAh99QG57qA8pwf6RqP1cta4xF4Zsn1hPxFoBdllcILMvIjy wuNxtyBlhssA6gJ0HYS4+kfGw64hs9a93SQ/cOEC+gppC7Y0b841+mBltNtOFrp4g3fQ HAJ4hhPqPjIhS1r1LWIHEpplqMXHySA2MLJK43Hrgac766OCTDDIVuhtMulWB5MJRSdt 2IeLa3RiR/w6d+ZnEQPYQDAYihuno8icpEW9vngmGaid9lXOVYJidxQsjZpH7h/6MPSy k4Sr9WP3rVOmO1w/+GqDvMKyEa49LUBaR6vdvYNBvWHff0MXS9sXhhi6K3+AexfkbsYP uqEA==

In-reply-to: <57D72C5C.5010402@riseup.net>

List-archive: <http://lists.torproject.org/pipermail/tor-dev/>

List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>

List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>

List-post: <mailto:tor-dev@lists.torproject.org>

List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>

List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>

References: <CAFnyNAd+5mMw3D_qhmXdx=dvjTZG3TC4Vg_aKOUy5-ePmEt3Hw@mail.gmail.com> <57D71FE7.5060306@riseup.net> <CAFnyNAe=LFUnWN0-v1tkpcRE0qY2+Zge3qh0V=A2XMt14rBWkg@mail.gmail.com> <57D72C5C.5010402@riseup.net>

Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx

Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

Hello Ivan,

Breaking existing (possibly automated) systems is a _very good reason_ IMHO :). Sure, warn the operators that they're using a legacy system, deprecate the option but don't disable it. https://trac.torproject.org/projects/tor/ticket/18054 sounds like a pretty sane solution btw.

Even if it's no longer officially supported, I think OnionCat in its current incarnation is a great proof of what could be done with the Tor network, other than privacy protection. I actually have this listed on one of my slides for SIM4Things - it's good for the Tor network, shows it can be used for a variety of things while putting very little stress on the network components. Very little traffic, potentially large PR impact (in a good way :) ).

Razvan

On Tue, Sep 13, 2016 at 1:29 AM, Ivan Markin <twim@xxxxxxxxxx> wrote:

Razvan Dragomirescu:
> Thank you Ivan! I still dont see a very good reason to _replace_ the
> current HS system with the one in Prop224 and not run the two in
> parallel.

For me it's because it would make overall system more complex and thus
error-prone and reasonably less secure. Is like using RC4, SHA1, 3DES in
TLS and be vulnerable downgrade attacks and all kind of stuff like
Sweet32 and LogJam (export-grade onions, haha).

> Why not let the client decide what format and security
> features it wants for its services?

It's like dealing with plethora of ciphers and hashes in GnuPG:

https://moxie.org/blog/gpg-and-me/:
> It’s up to the user whether the underlying cipher is SERPENT or IDEA
> or TwoFish. The GnuPG man page is over sixteen thousand words long;
> for comparison, the novel Fahrenheit 451 is only 40k words.

When system is complex in that way someone is going make huge
mistake(s). If crypto is bad, just put it into museum.

So I don't see _any_ reason to manage outdated and less secure system
while we have a better option (if we already deployed it).

--
Ivan Markin
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

_______________________________________________ tor-dev mailing list tor-dev@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev