[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Reliability of circuit extension if target server is running a Tor exit node



On Thu, Jul 13, 2006 at 12:35:24AM -0400, phobos@xxxxxxxxxx wrote:
> : at port 443, but people browse the website on the same IP at port 80 
> : using Tor, will their circuit exit from this Tor server?
> 
> 	No.  The exit policy is honored. If example.com is a tor exit
> 	server, but it doesn't allow port 80 to exit, you will not
> 	extend a circuit through tor to get to example.com:80. 
> 	The traffic will go through another exit server that allows port 80.

But remember that Tor servers have exit policies, so there's more to it
than saying "you're an exit node" or "you're not an exit node". For
example, some Tor servers might have an exit policy that rejects
everything but connections to their own IP address. Then they can be
used in the way you describe (as a private enclave server, essentially),
but they won't connect to arbitrary destinations.

--Roger