[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
From: Philipp Winter <phw@xxxxxxxxx>
Date: Fri, 5 Jun 2015 11:10:45 +0200
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 05 Jun 2015 05:11:03 -0400
In-reply-to: <55702AC7.1040608@xxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Mail-followup-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
References: <556F707A.6050506@xxxxxxxxxxxxxxx> <5570269C.2040702@xxxxxxxxxx> <55702AC7.1040608@xxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Thu, Jun 04, 2015 at 10:39:03AM +0000, nusenu wrote:
> > These relays have previously been excluded from the Tor network.
> > They have now tried rejoining with new fingerprints. All of the
> > following relays are confirmed as being managed by the same
> > operator.
> 
> Again, I really dislike the in-transparency here.

I agree that it needs improvement.  In theory, we already have a public
repository for blacklisting relays:
<https://gitweb.torproject.org/authdirbadexit.git/>

In practice, nobody has had time yet to put all existing rules in the
new repository.  Also, it's called "authdirbadexit" and it would be
great if AuthDirReject and AuthDirInvalid rules could be published as
well.

> Could you share a bit more information?
> (or if it is already available somewhere, a url is enough)
> 
> Which relays where excluded? (identified by fingerprints)
> When were they excluded?
> How have they been excluded? (specific IPs, entire IP blocks,
> fingerprints, ...)
> Why have they been excluded?

I attached a list of fingerprints that were rejected by the directory
authorities around May 20.  All these relays were HSDirs and actively
scanned hidden services they were responsible for.

Cheers,
Philipp
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
  - From: nusenu
- Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
  - From: Philipp Winter

References:
- [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
  - From: nusenu
- Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
  - From: Donncha O'Cearbhaill
- Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
  - From: nusenu

Prev by Author: Re: [tor-talk] Recorded Future webinar on sniffing exit nodes
Next by Author: Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
Previous by thread: Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
Next by thread: Re: [tor-talk] DocTor's 'Possible Sybil Attack' (2015-06-03) report
Index(es):
- Author
- Thread