[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #26122 [Obfuscation/Obfsproxy]: obfs4: remove byte threshold for disconnection (was: obfs4proxy: closeAfterDelay() should to conform to obfs4 spec)

To: undisclosed-recipients: ;
Subject: Re: [tor-bugs] #26122 [Obfuscation/Obfsproxy]: obfs4: remove byte threshold for disconnection (was: obfs4proxy: closeAfterDelay() should to conform to obfs4 spec)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 17 May 2018 19:29:25 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 17 May 2018 15:29:36 -0400
In-reply-to: <051.a3ff1bcdfcd337823051d69eecfd726b@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <051.a3ff1bcdfcd337823051d69eecfd726b@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#26122: obfs4: remove byte threshold for disconnection
-----------------------------------+-------------------------
 Reporter:  cypherpunks            |          Owner:  dcf
     Type:  enhancement            |         Status:  closed
 Priority:  Medium                 |      Milestone:
Component:  Obfuscation/Obfsproxy  |        Version:
 Severity:  Normal                 |     Resolution:  wontfix
 Keywords:                         |  Actual Points:
Parent ID:                         |         Points:
 Reviewer:                         |        Sponsor:
-----------------------------------+-------------------------
Changes (by dcf):

 * component:  Obfuscation/Censorship analysis => Obfuscation/Obfsproxy
 * type:  defect => enhancement


Old description:

> obfs4-spec.txt:
> > On the event of a failure at this point implementations SHOULD delay
> dropping the TCP connection from the client by a random interval to make
> active probing more difficult.
>
> closeAfterDelay() can to violate spec by closing connection immediately.

New description:

 As currently implemented, an obfs4 server disconnects an unauthenticated
 client after 8192–16383 received bytes or 30–90 seconds. (The exact values
 are chosen randomly from these ranges for each server.) The patch in
 comment:1 proposes to remove the byte threshold and keep the time
 threshold, as a mitigation against active-probing distinguishers such as
 the one in #26083.

 Original description:
 > obfs4-spec.txt:
 > > On the event of a failure at this point implementations SHOULD delay
 dropping the TCP connection from the client by a random interval to make
 active probing more difficult.
 >
 > closeAfterDelay() can to violate spec by closing connection immediately.

--

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/26122#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #26122 [Obfuscation/Censorship analysis]: obfs4proxy: closeAfterDelay() should to conform to obfs4 spec
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #17810 [Core Tor/Torflow]: TorFlow should ignore self-reported bandwidths when measuring relays
Next by Author: Re: [tor-bugs] #26095 [- Select a component]: DELETE THIS CRAZY STUFF ASAP
Previous by thread: Re: [tor-bugs] #26122 [Obfuscation/Censorship analysis]: obfs4proxy: closeAfterDelay() should to conform to obfs4 spec
Next by thread: [tor-bugs] #26123 [- Select a component]: Repetidores falló
Index(es):
- Author
- Thread