Re: DuckDuckGo now operates a Tor exit enclave

On Sat, Aug 14, 2010 at 11:09 AM, Geoff Down <geoffdown@xxxxxxxxxxxx> wrote:
> On Sat, 14 Aug 2010 09:20 -0400, "Ted Smith" <teddks@xxxxxxxxx> wrote:
>> An "exit enclave" is when a service operates a Tor exit node with an
>> exit policy permitting exiting to that service. Tor will automagically
>> extend circuits built to that host from three hops to four, such that
>> your traffic will exit on localhost of the service you are intending to
>> use. This means that users will use DDG's node when building circuits
>> that terminate at duckduckgo.com or whatever.
> Really? Duckduckgo.com is on AS19262 Verizon, but when I accessed it, it
> was via an exit node on AS30058 ACTIVO-SYSTEMS.

Exit enclaves need a lot of work.  E.g.  Your node can't tell if an
exit enclave exists for your destination until after its done the DNS
resolution. They also add an extra in-network hop.
