[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Making TOR exit-node IP address configurable

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] Making TOR exit-node IP address configurable
From: "Fabio Pietrosanti (naif)" <lists@xxxxxxxxxxxxxxx>
Date: Wed, 09 Mar 2011 19:23:15 +0100
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 09 Mar 2011 13:23:35 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx
User-agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.13) Gecko/20101207 Thunderbird/3.1.7

Hi all,

i've been thinking and playing a lot about the various possible risk
mitigation scenarios for TOR exit node maintainer.

Now i need to be able to pass all web traffic trough a transparent proxy
in order to implement some kind of filters to prevent specific
web-attacks, web-bruteforce, etc, etc

One very interesting feature that's now missing from TOR and that would
need to implement such kind of proxying is to be able to bind the
TOR-exit traffic to a specific IP address.
That way would be possible to "mark" with iptables the TOR exit traffic
and just mangle this.

That kind of added feature would also allow a TOR exit node to re-route
the TOR exit traffic go away trough multiple interface in round-robin
for example, for multi-homed TOR routers.

Sounds to me like a small patch, but frankly speaking i'm not a c-coder.
Some volunteer?

-naif
http://infosecurity.ch
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Making TOR exit-node IP address configurable
  - From: Gregory Maxwell
- Re: [tor-talk] Making TOR exit-node IP address configurable
  - From: Robert Ransom

Prev by Author: Re: [tor-talk] server4you
Next by Author: Re: [tor-talk] Making TOR exit-node IP address configurable
Previous by thread: Re: [tor-talk] torrc consistency
Next by thread: Re: [tor-talk] Making TOR exit-node IP address configurable
Index(es):
- Author
- Thread