[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Protecting exit-nodes by GeoIP based policy



On Mon, Sep 11, 2006 at 04:17:40PM CEST, numE wrote:

> But maybe this could be a bad idea anyway.
> The investigations will be harder for a foreign country public
> prosecutor / police department, but beeing jailed on your next travel
> to the unites states (just an example) could be even worse than
> having investigations in your own country (which you are at least able
> to control up to a certain amount with your own legal steps).

You can still exclude countries to which you still want to be able to
travel to ;)

From this post, it would follow that a country based exit policy would
also be meaninful, and that you personally would prefer to set your
policy the other way, i.e. that you'd only allow traffic into your own
country - but this still leads to the same technical problems.

Although, combining client and server algorithms might lead to some 
working approach (if the problem with the license could be solved):
 - the server announces his exit policy, including countries
 - the client has her own DB of countries
 - they act independently on their databases and some exiting streams
   get rejected - how bad could that be? possibly just a small 
   percentage of connections that get rejected. 
   
Does anyone know how static the distribution of IPs <-> countries is?

Haven't read the 'academical contribution page' from tor for a while,
but how about adding this point to that list?

-- Lexi

-- 
Qhzk.-Hnipal. Kxvh Zhlxnhqhw, Aubl 4222, Oxk: +49 241 80 21419
ASOY Uutyxn, Hnipaluohg HD, Uypanwoa. 55 - 52056 Uutyxn - Mxalunc
| Qabl wxhq nba jaud bnq fxhmo xbty lbwoxayuio,
| Kuwwo Zyunouwhx, lho ukkxn hyaxn Typxaxn,
| Dxanbnio, Dxawounq, Xlzihnqbnm, Kxhqxnwtyuio,
| Qpty, lxago xbty spyk! nhtyo pynx Nuaayxho ypxaxn.