[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #6327 [- Select a component]: BGP as exit

To: undisclosed-recipients:;
Subject: [tor-bugs] #6327 [- Select a component]: BGP as exit
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Fri, 06 Jul 2012 14:30:45 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 06 Jul 2012 10:30:19 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#6327: BGP as exit
----------------------------------+-----------------------------------------
 Reporter:  ioerror               |          Owner:  ln5
     Type:  enhancement           |         Status:  new
 Priority:  normal                |      Milestone:     
Component:  - Select a component  |        Version:     
 Keywords:  bgp, asn              |         Parent:     
   Points:                        |   Actualpoints:     
----------------------------------+-----------------------------------------
 We need to integrate ASNs into configurations for exit nodes. This should
 allow ln5 to set an exit policy that allows for policies based on a single
 ASN or a list of ASNs.

 A very easy way to accomplish this is to modify the exit policy checking
 code on the exit node and before the last policy is applied.

 As an example, we'd add the right headers for IP to ASN and then after a
 DNS resolve, we check the IP:port against the IP to ASN database and if it
 matches the allowed ASNs, we pass the policy test.

 This does not actually enable the client or any client to use these exits
 but it does mean that the exit can signal, locally, a policy related to
 ASN.

 We should also write a proposal to decide how clients use ASN exit
 policies safely.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6327>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #6327 [Tor Relay]: Exit policy for ASN-based allow (was: BGP as exit)
  - From: Tor Bug Tracker & Wiki

Prev by Author: [tor-bugs] #6326 [Atlas]: Atlas Twitter integration
Next by Author: Re: [tor-bugs] #6057 [TorBirdy]: avoid revealing torbirdys anonymity set explicitly
Previous by thread: [tor-bugs] #6326 [Atlas]: Atlas Twitter integration
Next by thread: Re: [tor-bugs] #6327 [Tor Relay]: Exit policy for ASN-based allow (was: BGP as exit)
Index(es):
- Author
- Thread