[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Is "gatereloaded" a Bad Exit?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Is "gatereloaded" a Bad Exit?
From: John Case <case@xxxxxxxxxxxxxxxx>
Date: Fri, 11 Feb 2011 05:58:42 +0000 (UTC)
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Fri, 11 Feb 2011 00:58:49 -0500
In-reply-to: <20110211022903.GL2550@xxxxxxxxxx>
References: <201102100149.p1A1nai0016735@xxxxxxxxxxxxx> <AANLkTiknoE8NJ-KkzzwBeGQMp-xROm3gJ3DYpChTQdvR@xxxxxxxxxxxxxx> <20110211022903.GL2550@xxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx


On Thu, 10 Feb 2011, Mike Perry wrote:

Exit policy is currently at the operator's pleasure, need and design.
If exit policy mandates will help solve some Tor scalability or
attack vector issues, in a substantive way, from an engineering
standpoint, fine. But please, don't claim it makes users any more
'safe' from sniffing.


I've already addressed the rest of your points.  For the record,
you're just strawmanning here. I never made the claim this was safer.

I cited several engineering reasosn why this type of exit policy
is a pain for us.



I think these reasons should be worked around or ignored.

I think you, and others on that side of this argument have a very, verymyopic view of the constraints and non-technical decisions that go intorunning a particular node - exit or not.

Rich white people in the north can just trade some dollars forco-location, exercise their free speech, and argue back at the police, astheir equals, when they come calling.

That's not the case for everyone - and even in those rich, whitecountries, there are political and economic ramifications for running aTor node, exit or otherwise, that seem to have not occurred to you.

I've also made the claim that there is no rational reason to operate
an exit in this fashion, other than to log/monitor/censor traffic or
because of undesirable network conditions, and no one has disputed
that claim.

No, there is no _technical_ reason to operate an exit in this fashion.There is no reason, from a myopic, borderline autistic view of theexternalities involved, to run an exit in this fashion.


However, I can think of many, many reasons to:

- run a node with no contact information
- run a node with an odd set of exits
- run a node with plain (unencrypted) exits
- run a node with odd (non standard port) exits

You have absolutely NO FUCKING IDEA what a node has been deployed for, whois using it, and how many layers of subterfuge are being employed betweenthe external function and the true function underneath.

Further, the power of a platform such as ToR is in the arbitrary extensionof the base set of capabilities, and many, many different models ofsubterfuge, trust, anonymity, etc., can then be built - at arbitrarylevels of complexity - and you are chopping those off at the knees.

***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Is "gatereloaded" a Bad Exit?
  - From: Anders Andersson
- Re: Is "gatereloaded" a Bad Exit?
  - From: Gregory Maxwell

References:
- Re: Is "gatereloaded" a Bad Exit?
  - From: Scott Bennett
- Re: Is "gatereloaded" a Bad Exit?
  - From: grarpamp
- Re: Is "gatereloaded" a Bad Exit?
  - From: Mike Perry

Prev by Author: Re: Where is vidalia config file?.MacOSX.
Next by Author: Re: Is "gatereloaded" a Bad Exit?
Previous by thread: Re: Is "gatereloaded" a Bad Exit?
Next by thread: Re: Is "gatereloaded" a Bad Exit?
Index(es):
- Author
- Thread