[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Bridges that can't be discovered by their own clients

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] Bridges that can't be discovered by their own clients
From: distractedtokyo@xxxxxxxx
Date: Fri, 25 Aug 2017 20:06:11 -0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 25 Aug 2017 16:06:25 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=elude.in; s=mail; t=1503691575; bh=uqSlSW3XCb7dIxWOcfpU3JA/UYIHTPuOXbsXa0ABOEc=; h=Date:Subject:From:To:From; b=nEW/+zNFpvSUF6CH9Juzk/RcoGsDkAoSVKiDJ0rxa/mUjj1da8qG5s9SMxzcpzVBX lBWDKLttfv2w2brZ1bm+b1eYoN2zwvaOeEQ8r/Ba21ulZH6I4zakM0aUYGMriF5SeK Q31KMbn0lpS5zrxhPgouBDZFaawGvOqb1IQk0tBw=
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: EludeMail/1.0.0

Hi,

Say you have a LAN and provide connectivity into Tor via a bridge. You
don't want users to identify where your bridge is, but you want to provide
them direct access into the Tor network. You disable fingerprint
publishing and they use a fixed LAN IP to provide connectivity out of.

Can they then take the fingerprint they see when talking to the bridge and
compare it to a relay that they own and find the bridge's public and
"real" IP?

If this doesn't work, is there any known way to provide connectivity where
the clients cannot figure out where the connectivity is coming from? Like
in the case of hidden hosting?

Preferably in a way where you torify all traffic but they can host their
own hidden services without a double-Tor penalty (hence the bridge idea).

Thank you!

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: Re: [tor-talk] torproject package repository
Next by Author: Re: [tor-talk] torproject package repository
Previous by thread: Re: [tor-talk] Tor Autonomous System stats
Next by thread: [tor-talk] TBB User Agent - how decided?
Index(es):
- Author
- Thread