[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too
From: Roger Dingledine <arma@xxxxxxx>
Date: Sun, 30 Mar 2014 23:15:00 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 30 Mar 2014 23:26:34 -0400
In-reply-to: <CAF6_1m_V_cJd_4qFmDd22DQ2PMV4icEfFPZh7pUWin2UttAF1Q@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <59f49353335fc50745e39a161ad72585.squirrel@xxxxxxxxxxxxxxxxxxxxx> <20140328031124.GV21730@xxxxxxxxxxxx> <2e47cc792dadd0684d3d77b1474e7842.squirrel@xxxxxxxxxxxxxxxxxxx> <533777FE.1060705@xxxxxxxxx> <CAF6_1m_V_cJd_4qFmDd22DQ2PMV4icEfFPZh7pUWin2UttAF1Q@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mutt/1.5.20 (2009-06-14)

On Sun, Mar 30, 2014 at 10:23:10PM -0400, krishna e bera wrote:
> To tries to recognize when random DNS queries are being hijacked by ad
> pushers, but i dont think it can tell when specific sites are blocked in
> this manner.  Would it be possible for Exit Node operators in such an area
> to have a switch they can set to reject DNS queries through it but still
> accept exit traffic? ServerDNSTestAddresses seems to change the entire exit
> policy if specified domains fail.

It certainly won't be straightforward. Clients don't cache dns answers
anymore because of various attacks:
https://gitweb.torproject.org/torspec.git/blob/HEAD:/proposals/205-local-dnscache.txt
So if you can't do dns resolves, you basically can't connect anywhere
for users.

See also
https://gitweb.torproject.org/tor.git/blob/tor-0.2.4.21:/ChangeLog#l1149
https://trac.torproject.org/projects/tor/ticket/7570

--Roger

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] Tor Project and Youtube is blocked in Turkey too
  - From: Kus
- Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too
  - From: Andrew Lewman
- Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too
  - From: Kus
- Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too
  - From: Ondrej Mikle
- Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too
  - From: krishna e bera

Prev by Author: Re: [tor-talk] fresh TBB is damaged and can't be opened on Mac OS X
Next by Author: Re: [tor-talk] Newbie with a bunch of questions for Tor Cloud
Previous by thread: Re: [tor-talk] Tor Project and Youtube is blocked in Turkey too
Next by thread: [tor-talk] Restricting TOR ports
Index(es):
- Author
- Thread