[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Is "gatereloaded" a Bad Exit?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Is "gatereloaded" a Bad Exit?
From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
Date: Sat, 29 Jan 2011 22:12:20 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sat, 29 Jan 2011 22:12:28 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type:content-transfer-encoding; bh=zTD1PcGl8hmnjvGzkWsguQV7lsoIUf2YYi0tY7xgAEs=; b=Kxq2z6bCAw5zbe5kQ0Uv7Iej2RlpJZ0sersJYj5e4LdqrBCzOD1vVLm7JCCLFN0i/+ ila4ZZj0YX5lD4nOh4Gmet0ZMLYKGwHSC09+hsFLU2UhW3q+Lt/49GkJoipYspTra/Gy lGp1kQeF6GD2Dv7mRYFum1Y6ljrn2sUk8k9Ks=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=HPMWWQ0KDCR9YJdc6/hOPzvsFB8TJ21/DeaLdUqXEfKj75yVz2WPUg1qXSMzSyQg64 wf7oUSyBwDxJhqjhZaqex729VNtMG2RvKd2bVjKpOQdnW5gpSasgI+EkGFUOzfIeqNc5 CfdcMrg0SunsegUxk5I/GC2D1FxO5oXvlDE88=
In-reply-to: <AANLkTi=C7koc=qjDJn-X0Dw8KoPkRs6LB14_GbaH0QxG@xxxxxxxxxxxxxx>
References: <4D44607C.6030900@xxxxxxxx> <20110129154414.6a0d9d91@kilik> <4D447EA9.5080404@xxxxxxxx> <AANLkTi=C7koc=qjDJn-X0Dw8KoPkRs6LB14_GbaH0QxG@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On Sat, Jan 29, 2011 at 9:56 PM, grarpamp <grarpamp@xxxxxxxxx> wrote:
>> I dont see how to recognize if the traffic is recorded?
>
> I know people who record exit traffic, lots of it. And they
> do all sorts of things with it too. Does that news trouble
> you? If so, you need to readjust your thinking.

It's not realistic to think that people will maintain their own
excludelistsâ a few extremists will, but the bulk of the users won't.

Instead, I think that nodes which exit _only_ to the unencrypted
version of a service (e.g. 80 but not 443) should be excluded from
operating as exits entirely (except as enclaves).  In this way these
nodes would be force to "pay their way".  We can't stop them from
sniffing, but at least we can make them carry traffic they can't sniff
as part of the cost of doing their evil business. They could do things
like severely throttle encrypted traffic, but that is activity that
testing could detect.

To some extent the exit flag criteria approximates this, but it's
mostly a load balancing criteria and it's actually really easy to
trick, even though this node has not successfully done so.  (E.g.
Accept 224/4:*)

As far as that exit policy goes, the RFC1918 blocks might be there in
an ignorant attempt to trigger the exit flag for completely benign
reasons, though sniffing sounds more likely.
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Follow-Ups:
- Re: Is "gatereloaded" a Bad Exit?
  - From: Mike Perry
- Re: Is "gatereloaded" a Bad Exit?
  - From: Orionjur Tor-admin

References:
- Is "gatereloaded" a Bad Exit?
  - From: Jan Weiher
- Re: Is "gatereloaded" a Bad Exit?
  - From: Andrew Lewman
- Re: Is "gatereloaded" a Bad Exit?
  - From: Jan Weiher
- Re: Is "gatereloaded" a Bad Exit?
  - From: grarpamp

Prev by Author: Re: Tor uses swap?
Next by Author: Re: Is "gatereloaded" a Bad Exit?
Previous by thread: Re: Is "gatereloaded" a Bad Exit?
Next by thread: Re: Is "gatereloaded" a Bad Exit?
Index(es):
- Author
- Thread