[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Block directory authorities, is it possible?
- To: or-talk@xxxxxxxxxxxxx
- Subject: Block directory authorities, is it possible?
- From: Pei Hanru <peihanru@xxxxxxxxx>
- Date: Fri, 12 Jan 2007 17:41:50 +0800
- Delivered-to: firstname.lastname@example.org
- Delivered-to: email@example.com
- Delivered-to: firstname.lastname@example.org
- Delivery-date: Fri, 12 Jan 2007 04:46:14 -0500
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:subject:x-enigmail-version:content-type:content-transfer-encoding; b=pQRuG3DEmVKdBRXFlCX2k0aLUDf5OWY/I3M6ZXVvmx+Eo5lyorcuc0D762WwATuboKJjlRfmQxU8NUlkHoG5c8eQmlw7pOaA0E/3Q1e8Kl1tD81Kn3CrZNzZjWApKPdFDx6uu4i8/fGpWIiDlIdyAJcf+UC+HsvMfsWmzsY3Cbg=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
- User-agent: Thunderbird 126.96.36.199 (Windows/20061207)
-----BEGIN PGP SIGNED MESSAGE-----
I live in China and was/am having difficulties in using Tor, the problem
is: it takes quite a long time to build a circuit for the first time I
start Tor on my Windows machine.
I think it is because of the earthquake that destroys the fibers at the
seabed near Taiwan at the end of 2006, communications to the US were
almost blocked, to the EU were jammed. So it is very difficult to
download a new network-status from a directory authority.
Excerpt from dir-spec.txt:
Clients discard all network-status documents over 24 hours old.
When a client has no live network-status documents, it downloads
network-status documents from a randomly chosen authority.
Well, Tor will finally recover here when the fibers are repaired. But
this reminds me of a possible attack against the Tor network, say, if
the notorious Great Firewall of China blocks *all* the connections to
*all* the directory authorities (currently 5 I believe), then Tor will
will become completely useless in China. Considering the number of
directory authorities, this doesn't seem to be infeasible. (In fact, I
think this is easy to some extent.)
Am I understanding correctly? Are there any actions Tor can take? After
all, we cannot simply assume this will not happen in the future.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-----END PGP SIGNATURE-----