[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Excluding exit nodes

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Excluding exit nodes
From: tagnaq <tagnaq@xxxxxxxxx>
Date: Sun, 13 Feb 2011 17:07:35 +0100
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sun, 13 Feb 2011 11:07:15 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:message-id:date:from:mime-version:to:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=xOUNElBs7LghpvfI06wkoiy94xrkhNuc0rckzHnK/yU=; b=l+G+JAZwvTCYycTHJNzQPS9UXX3nnSBm9BZu9LCMgnGDZcMUGmZ4I82LC6SAM52akv RKsyy6CN5rR5qadC46LV/241j7Keve6VHwyTJ7S2yV+yBtKt7kI1gPf2pnCGvcJZCevv RzQ22nAIFGfZfv7Sfm1tkCPmqaT6OLetD5E2w=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; b=XVAuAY3lYz8WDPY/hMCvq4QxAEft7oQF8WTG18ebMbk7w7+SCzb9G34VNqHZx/XmQL v7ZbfiDYxyfxMkfFnoSfaFjyXHbL2/0aZ3MtTqACIjT/E3a6SbSE/IvYtsb3exaSa2Cl m0WYNEQFpvevw+l2OnKkQAVpjgo41LBfFxj2g=
In-reply-to: <1297610391.2138.12.camel@HAL9000>
References: <1297608222.2714.22.camel@HAL9000> <4D57F00C.5060707@xxxxxxxxx> <1297610391.2138.12.camel@HAL9000>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On 02/13/2011 04:19 PM, Tomasz Moskal wrote:
> Now I'm even more confused! What is "DirectoryAuthorities"?
> Could you point me somewhere I can
> find more informations about matters relating to exit nodes?

https://www.torproject.org/docs/faq.html.en#KeyManagement
(Coordination section)

General Design Document:
https://www.torproject.org/docs/documentation.html.en#DesignDoc
https://svn.torproject.org/svn/projects/design-paper/tor-design.html
(chapter 6.3)
Note: This document is from 2004. Statements like "new nodes must be
approved by the directory server administrator before they are included"
are no longer valid.

https://gitweb.torproject.org/tor.git/blob/HEAD:/doc/spec/dir-spec.txt#l142

> How someone can recognise if an exit node *might* be doing something
> suspicious - like sniffing traffic for passwords? As far as I can tell
> (with my limited knowledge that is!) it's by checking which ports the
> node in question is making available. And if there are not the standards
> one then it *could* do something nasty - which of course don't mean it
> does. Could you clarify this whole "rouge/bad/evil" nodes matter?

Well this is currently a 'hot topic' and I refer you to the lengthy
thread 'Is "gatereloaded" a Bad Exit?'.
Short answer: you can not reliably detect passive sniffing.
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Excluding exit nodes
  - From: Tomasz Moskal

References:
- Excluding exit nodes
  - From: Tomasz Moskal
- Re: Excluding exit nodes
  - From: tagnaq
- Re: Excluding exit nodes
  - From: Tomasz Moskal

Prev by Author: Re: Excluding exit nodes
Next by Author: Re: Yet another UDP / DNS quiestion...
Previous by thread: Re: Excluding exit nodes
Next by thread: Re: Excluding exit nodes
Index(es):
- Author
- Thread