[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] TOR peer-to-peer network
Aravindan B writes:
> > When i use the bridges which i got from the internet, it works. whereas
> > when i try to use my own IPs its not working. Please let me know how to
> > proceed on this as i am stuck here for a long time. Thanks in advance.
If you want to create your own Tor network, you'll need to run your
own directory server and tell all of the clients and routers to use
and trust it. The directory servers collect information about all
publicly-available Tor nodes so that clients can get a list and then
choose which nodes the clients want to build circuits through.
In the actual public Tor deployment, there are several directory services
which reach a "consensus" about the list of nodes. One reason for this
is to make it hard for someone to attack Tor by pressuring directory
server operators to tamper with the list (or by breaking into the
directory computers to change the list). An attacker who could do
that could remove honest nodes from the list and fill it instead with
nodes that the attacker controlled, and then clients would think those
attacker-controlled nodes were the only ones available.
If you have a copy of the normal Tor client, you can see the information
about the directory servers in "cached-certs" and "cached-consensus"
(with the actual listing of available Tor nodes in "cached-descriptors").
You'll see that the certs provide cryptographic keys which are used to
check the integrity of the directory information (verifying that the
several different directory servers have actually signed off on its
I couldn't find the complete documentation about the directory servers
(or their source code!). So this might be a good opportunity to make
it clearer somewhere on the Tor site how to deal with this in modern Tor
(maybe at least on the "research" page?).
The specification for the directory servers is at
Seth Schoen <schoen@xxxxxxx>
Senior Staff Technologist https://www.eff.org/
Electronic Frontier Foundation https://www.eff.org/join
815 Eddy Street, San Francisco, CA 94109 +1 415 436 9333 x107
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to