[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] How do the OBFS4 "built-in" Bridges work?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] How do the OBFS4 "built-in" Bridges work?
From: "Nathaniel Suchy (Lunorian)" <me@xxxxxxxxxxx>
Date: Sun, 29 Apr 2018 14:06:49 -0400
Arc-authentication-results: i=1; auth=pass smtp.auth=me@xxxxxxxxxxx smtp.mailfrom=me@xxxxxxxxxxx
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=lunorian.is; s=dkim; t=1525025214; h=from:sender:reply-to:subject:date:message-id:to:cc:mime-version:content-type:content-transfer-encoding:resent-to:resent-cc:resent-from:resent-sender:resent-message-id:in-reply-to:references:list-id:list-owner:list-unsubscribe:list-subscribe:list-post; bh=WQm0UKL+7p77+6xxAPHHuXLKAdgR1sMvAv+FmZCsDk0=; b=pylns1sqAAzGpSlcMP0pVaQKDXAXWQKExzr7j40jiFS+AHFj0iH7woO7OayycWURZqdjEm qU70n8V1gRRVMwpYa/ph/Aq9wG+QW0si2zfG1RLsF5/teoA1vQgh9irNVbUqNOAiuziKHT u9bvzvl0SBkpU1btKyv9C9EnmyWaAgIEPJ8cDi8AdXiideFaszY4+jXXVdTCWSmI5pPPAh o4R7NrkZTQ+rQ9pK6a4WnFPDeMpCHTt7b8RmGN2JwtgOLWarAM1CK2fsC49EYTOlvnCV05 j3GpGz64PVG+Glq0yyXG1zvlvFG5tBQuO6aXFqNK+Z6wU1YSWBCQRlhuc9GHow==
Arc-seal: i=1; s=dkim; d=lunorian.is; t=1525025214; a=rsa-sha256; cv=none; b=V0DOnvmv6OZiRlmg+NGvS6cpkPFxesJZuBNVjiCvOoflcMzrPKJfN8xKnRG7PSk5qQP7eoVv1BLfz6nhx4g83diDt2rO6h+p629uycMyuPXhQTWBzJNsntY6HWZNoNsfeOXLtcsPZ7OVM1y9M+nVESMxGxjNPU7pS3800ixWTMsQTQRFXQDmJ6Vc2pAsFuvAU5g0yFgRX0+RXr0qZfJ8wjoaSirVlIvoCCtEMK/unVzfR7FEntHocjXPNjY05oBM/tJfaUWX/kse28aKLRNDN9+Rx6cnkYPwzFji5+pQ/joNUa7a+R4x6P1miFecJ+RhSi6hSFgv3xuWZ+HMWEuXpQ==
Autocrypt: addr=me@xxxxxxxxxxx; keydata= xsFNBFqE2wkBEAC/GxQ6HUGzogvdh6ofRRHcC0a248dLnGM/DyqotoHuQlIdpKJWsVMt5GLA rfg03HipWRk0C8ClPM5PJoUonlm//cmX1tKEraoqiEA1eDYK2BqGXJmhMosn42FpGg6h2BXD pOBcMCFPotAxp8ZeKIw8mwXpC/tJ9lbiU2t5wSJoJFrX1ZVwOAdaANS7FX23OVm1b3KaAR4Z 7qo6JGcxwrGwkk2hYEg5Uam2+0EIEWwh046wlimO54nZUkvq51/5UkuR/eog9hfwhqOomjDT JSn45443lsxChDPCzwUTXpInRWQlSKFQQCe+1TuOqOuIXoDcdYSSUgCxmUmw8Acy4zcRDLrV s+EeI/8tLkPVb2duXLzUIPX/I4/tcxTYF7tGG5z4g1kgDKMQntcWv4UYAEVgaMOD6UQc/EWX ugVrShWInQ3zswvVsH3DkLmYG8QX4w4YLTpb13ICT23b30Q6g0KRER1n3OovhmJihby2tGlM xgNUqE+JHw6VtJdpEYJCVCX8HUuQilrCWzIaeGC6wvJpy3DukVB1PRiLDYODGF1TZTarryAn uznDqi1JTpbF2h2YoRThj2cOa1+FItVcSfrVosdvlO7Ttj3dC5i7TTfrCBk8DxW2k72rqtcC tz2CuGmRBpmdlXUGFdRLck+qc2d78sGRWLR/aQ1nJGu06MTZ8wARAQABzSBOYXRoYW5pZWwg U3VjaHkgPG1lQGx1bm9yaWFuLmlzPsLBlAQTAQgAPhYhBEdTkX7+BHbOmAoeivM+9dFMIjmS BQJahNsJAhsDBQkHhh+ABQsJCAcCBhUICQoLAgQWAgMBAh4BAheAAAoJEPM+9dFMIjmSL24P /0j7tkc38Sy0417REtnyXekD89tHStMYfU5hBYkKQC6X3iaG91FQ/P7rdWvdZx5XrZBDAuJ6 MyrbprPfygqhwMsxg7VIRhLf2SCnpAqGKjlYdSyOPBlnBpEGjCPUw6i2EJZuIwIzVboGbvCU R8KNgWtil1wRAJURD8cHWwpciH1zfWfuIZdErN9xXR6IeZjxop2BqgzmgFJMLsZT8NVIJbzw YOeqAcA926gAGVZRMkYLFSSQ6R1+xmLJekDgFQYDB+oCdV7CqkDZz2ExSNVT1AdcM4BFRxuc CbqZluk58BiCqXEkUUVhXeoo3qCkRpP/vxoHj6ScD66VbbUF6WbPBymoP7Z8muEFBXxP2EdU DlQ0tNv8tsVineFOAKFXmnq1sRN8y5q6CsiOEzYGE1zyt3GcaI+8icU61WyPFSPnbP1wwkv4 6MSmx6HGc2d6qQWjIVfcXaI/QH7d4G9nx/4NvhtM6af96PsVfW5lZQ2i5CB6hKEijMMsB4sL BfvUpRDuBYREFOsNhASd9OFEdNalvnbOeWJqcTvh2F18WJFkaaNT0R74zS2HjCVlOtJ8CbvJ 5M/3oVb1gGXX+l1kQiUdMC493BrcJqMOWnRQ4Kv8bzEERhFYzOA3eSNjQjeHbPFhBR9kQd32 zMoWoUlMTQs7DwpRfBAwahcIllA2sjcvJBD7zsFNBFqE2wkBEAD0vhAUYWoAsyfOWO2ouFU9 n7CjDtLmDoFKiV4JnLvurgHa2dZa8+Wo6F68IVCmWmaQhoBBr55ucjUogCVFlDiL4EnA3B/2 KyU502kfu0pSfDUI7hYYlc1D0RS8N6otEjNAv+0cpUHfMHzP1dUQ4voXCmbI4T/S6cXI5oTz 2NW1jL+MNgkndsq9w/+DNWvCdNoGGSwCFSSp7mEMZiYtrlP9uBZIAHlYfuj2SB1aVUBhNIr2 /ELvR1ozZSmYoucODWleQPPNxOQXpTBBssBCx1wAfGywU0VvTgfu/fbYmaRI6/IyXMUqeoZH nVqujfXByNwsKGTA0FlOxtlv9e2H8I8FXRgcJ/07yjjzLMIbrnQ77QIwI3igUcTo9kOOzXcb X6w7EznxDr9GsTwf6VmntUungmYcH6lLua8oBnums9ZV6PS7ajBbYyqndWJD8IpTpwloyVym b5tJfkWmfX21GPnIecg2cBOgpv3i12fX1My9fnigFikwr28fYjdPkHh9eg8YXROAgc45+Hrd f0eo0Bhhp0yIHdBzanwmBsK5qFieB/WEcydtMzdszRStIEY4E9OUIlz/v8E94sM2NeKwhcyQ F1IHmdb51pnjZWjHQs9tFnDWguYYQq5P+ntqKIjC8bSEnew6llra97ZFqrwusX4mlMbG5Zbs ZrgJEZ7sbsDumwARAQABwsF8BBgBCAAmFiEER1ORfv4Eds6YCh6K8z710UwiOZIFAlqE2wkC GwwFCQeGH4AACgkQ8z710UwiOZLCBRAApqtfcSPM74tTyQITmXUhxxXeundNDb+KVpeY5CsM tnykpor/wU7h8i86346T2gvmB0UZ7LuR3t1Kilx8dhIdPBVBfOYmnlTipnHHKIvRIe0rAVmH +StJaU0Ll4goG3k5B/AiSztClw4UoEMYUAL/5ONu9W80oyr9+lFPIL8o1sVHQwkOxHx+lIiC FsGH8K9FDIyUFjrPGFAExlUN8oou/RblBRqyhUG3OzSKhr/SGzgVNZivCmrf47WhlbMJd3ZS XWuqlUoYD67oGPZISCAEzjhtOBNInaG1bxTmGT4aPC+wpU39DgIVNhfORP0K8OkACTQ7WUFD 6fz+3ww1zeajebO4Fo0qX5p8qj89pQpav2e6YgsyLARFOVw3Y//wJxKo3QMdUrllcj+YWrII uBsLDMowsjVaxAPfrdV2OurI7swyNZwZFv1Olqzi5DWqLgQt5RdsW2R80RxK5eHG+FBbgfcQ hSx/zl0IGeyd4RA1WBNiedXKPiEFdWe2mz3LZi2rbpQ2KQ8qB7Sf5wddAeJA99XAG8rVoRCS DV4OjYi2H6lgZavYOjEtkHaJgOlrB3LxEUABSWl93WqKjco9t+GyLU3sh0jEhBRNqPUm49x7 miuumoH8Tj6MogkJwNy6Dw+IuD5i5Bi5vrq7o16/aCi5J4AVdnkinPum40NFR7qgnU4=
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 29 Apr 2018 14:07:12 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lunorian.is; s=dkim; t=1525025214; h=from:sender:reply-to:subject:date:message-id:to:cc:mime-version:content-type:content-transfer-encoding:resent-to:resent-cc:resent-from:resent-sender:resent-message-id:in-reply-to:references:list-id:list-owner:list-unsubscribe:list-subscribe:list-post; bh=WQm0UKL+7p77+6xxAPHHuXLKAdgR1sMvAv+FmZCsDk0=; b=nCLriaAnvOOzupTHn5FD/PMjbHoTfOWe4VJpbWGVNEno45f/v2FcRuuHsqymV54LjrcvFU Boju0JIa2GA3GmHJz6r4E7n2Q+53ci7dddoj5a3HhGXUkkn5umMrMAKJBQRbw7XBxxe22P zKKPgyulSAzMiuQkDIjWLAJVNqcNwMivBEISfqvkfXqL0g7OmrenZcusc6rRF3LsPabSx7 MTpFmdsYCgR+8w+uZoMiTBj8moOAhrkGgcrK58q3zCVHr9VyOPOWio3i5CVU47Q1mIsScr IpJ0DA9ILEIEZfc7Ue+91e/FfbvjtSQhmF+QN/DjbLnqmzw5h5nLtlZ/Cv718g==
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Openpgp: preference=signencrypt
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:52.0) Gecko/20100101 Thunderbird/52.7.0

I see that Tor Browser, for users who are censored in their country,
work, or school (or have some other reason to use bridges) has a variety
of built in bridges. Once of those are the OBFS4 bridges. My first
thought would be these are hard coded, of course giving everyone the
same set of bridges is bad right? Then a bad actor could download Tor
Browser, get the list, and null route the IPs on their network(s). Also
these bridges could get quite crowded. Are the bridges being used to
fetch other bridges, or something else? How does Tor Browser handle
these risks / technical issues?

Cheers,
Nathaniel Suchy

Attachment: signature.asc
Description: OpenPGP digital signature

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] How do the OBFS4 "built-in" Bridges work?
  - From: Matthew Finkel

Prev by Author: Re: [tor-talk] Fixing Orchid (Tor reimplementation in Java)
Next by Author: Re: [tor-talk] How do the OBFS4 "built-in" Bridges work?
Previous by thread: Re: [tor-talk] Google reCAPTCHA
Next by thread: Re: [tor-talk] How do the OBFS4 "built-in" Bridges work?
Index(es):
- Author
- Thread