[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor 0.1.0.1-rc is out

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor 0.1.0.1-rc is out
From: Mike Perry <mikepery@xxxxxxxxxx>
Date: Wed, 30 Mar 2005 02:32:30 -0600
Delivered-to: archiver@seul.org
Delivered-to: or-talk-outgoing@seul.org
Delivered-to: or-talk@seul.org
Delivery-date: Wed, 30 Mar 2005 03:33:15 -0500
In-reply-to: <20050328215213.T12832@moria.mit.edu>
References: <20050328215213.T12832@moria.mit.edu>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx
User-agent: Mutt/1.4.1i

Thus spake Roger Dingledine (arma@xxxxxxx):

> This release incorporates automatic reachability testing for servers (the
> first step to getting rid of the 'verified servers' notion), uses pthreads
> if available to reduce server memory footprint, uses libevent so we can
> use better polling interfaces when available, handles slow/busy hidden
> services better, supports https proxies for clients, and fleshes out our
> controller interface. It also fixes a bunch of minor but annoying bugs.

Awesome. Hidden services are a *LOT* quicker. At least for web.

Though, as an aside, what is the potential weakness for them that was
mentioned offhand in your latest draft paper? Is this
exacerbated/lessened/unchanged by the changes?

Also, got a few other random questions:

>     - Better handling for heterogeneous / unreliable nodes:
>       - Annotate circuits w/ whether they aim to contain high uptime nodes
>         and/or high capacity nodes. When building circuits, choose
>         appropriate nodes.

Are there any plans to use the ReadHistory/WriteHistory fields in the
directory servers to also guide circuit creation? Like choosing nodes
whose bandwidth history is less than their average?

>       - This means that every single node in an intro rend circuit,
>         not just the last one, will have a minimum uptime.
>       - New config option LongLivedPorts to indicate application streams
>         that will want high uptime circuits.
>       - Servers reset uptime when a dir fetch entirely fails. This
>         hopefully reflects stability of the server's network connectivity.
>       - If somebody starts his tor server in Jan 2004 and then fixes his
>         clock, don't make his published uptime be a year.

Do directory servers otherwise refuse to accept servers that just come
online and immediately report high uptime? Otherwise there could be a
possible attack to try to get more people to use a node.

>     - Make hidden services try to establish a rendezvous for 30 seconds,
>       rather than for n (where n=3) attempts to build a circuit.

Is this option tunable? Does it have any effect on hidden service
security?


-- 
Mike Perry
Mad Computer Scientist
fscked.org evil labs

References:
- Tor 0.1.0.1-rc is out
  - From: Roger Dingledine

Prev by Author: Re: Low-Cost Traffic Analysis of Tor [QoS Solution?]
Next by Author: portable tor?
Previous by thread: Tor 0.1.0.1-rc is out
Next by thread: Can't start Tor under Debian
Index(es):
- Author
- Thread