[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #11973 [Tor]: Should relays stop making unencrypted directory connections?

Subject: Re: [tor-bugs] #11973 [Tor]: Should relays stop making unencrypted directory connections?
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 17 May 2014 16:34:21 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 17 May 2014 12:34:36 -0400
In-reply-to: <045.42fcb17d986ec35b3a356323c46ff9d0@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.42fcb17d986ec35b3a356323c46ff9d0@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#11973: Should relays stop making unencrypted directory connections?
------------------------+------------------------------
     Reporter:  nickm   |      Owner:
         Type:  defect  |     Status:  new
     Priority:  normal  |  Milestone:  Tor: unspecified
    Component:  Tor     |    Version:
   Resolution:          |   Keywords:  needs-proposal
Actual Points:          |  Parent ID:
       Points:          |
------------------------+------------------------------

Comment (by bburley):

 I have a better understanding now of the reasoning behind using direct or
 encrypted sessions when communicating with the authorities. (1) Cost of
 server resources, and (2) protecting information believed to not need
 protecting.

 I don't know the value of (1), but I do believe that removing an
 additional way of someone determining you are operating as part of the Tor
 infrastructure in valuable. Yes, someone can enumerate the Tor
 infrastructure by installing a client. That is one way to get information
 if they are looking for who is running Tor nodes. Someone trying to figure
 out what a particular server is running, not looking for Tor specifically,
 is a different attack/angle. Not encrypting that info allows someone to
 determine a server is running Tor when they weren't looking for it in the
 first place, but now they know.

 Would it be reasonable have an option created to turn this capability
 on/off?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11973#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #11973 [Tor]: Should relays stop making unencrypted directory connections?
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #11763 [TorBrowserButton]: Double clicking OK button after proxy change disables all security settings
Next by Author: [tor-bugs] #12036 [Orbot]: Different port for hidden services on ORBot
Previous by thread: Re: [tor-bugs] #11973 [Tor]: Should relays stop making unencrypted directory connections?
Next by thread: [tor-bugs] #11974 [Ooni]: Provide a test deck for a set of 7 interesting countries.
Index(es):
- Author
- Thread