[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Better testing through filternets

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: [tor-talk] Better testing through filternets
From: Nathan Freitas <nathan@xxxxxxxxxxx>
Date: Tue, 02 Sep 2014 11:40:01 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 02 Sep 2014 11:40:17 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.0

I am working on improving our ability to do more thorough and
standardized testing of Orbot, etc. As part of this, I am trying to
come up with a simple filternet configuration based on OpenWRT, running
on a TP Link MR3020.

Currently, I have this working:

- Use Dnsmasq to block high profile target domains (torproject.org,
google, facebook, twitter, whatsapp, etc)
- Block all HTTPS traffic (port 443)

This simulates most of the common DNS poisoning and port blocking types
attacks, though Tor can still easily connect at this point.

I would like the ability to simulate a more severe environment, where
for instance, Tor itself is targeted, and bridges are required. Any
thoughts or experience doing this?

- Block IPs/domains for known Tor Authority nodes

- block based on Tor protocol characteristics: ssl certs, common ports, etc

Thanks for any feedback, pointers, links, etc.

+n


-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Prev by Author: Re: [tor-talk] Tor relay on home computer
Next by Author: Re: [tor-talk] Hidden service on Android device through Orbot
Previous by thread: [tor-talk] UDP-based Tor-like test network for Bittorrent
Next by thread: [tor-talk] Dropping Tor Browser support for Mac OSX 10.6?
Index(es):
- Author
- Thread