[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17297 [Tor Check]: TorCheck fails on new exit egress IP not in exit DB, confusing to users

Subject: Re: [tor-bugs] #17297 [Tor Check]: TorCheck fails on new exit egress IP not in exit DB, confusing to users
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 21 Oct 2015 20:42:39 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 21 Oct 2015 16:42:48 -0400
In-reply-to: <049.3eb73c6b08227e3184ae56c705766f41@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.3eb73c6b08227e3184ae56c705766f41@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17297: TorCheck fails on new exit egress IP not in exit DB, confusing to users
-----------------------+-------------------------
 Reporter:  starlight  |          Owner:  arlolra
     Type:  defect     |         Status:  new
 Priority:  High       |      Milestone:
Component:  Tor Check  |        Version:
 Severity:  Normal     |     Resolution:
 Keywords:             |  Actual Points:
Parent ID:             |         Points:
  Sponsor:             |
-----------------------+-------------------------

Comment (by starlight):

 Looking further it becomes apparent that TorDNSEL and
 all other critical exit "scanners" are not actually
 "scanning" anything.  They rely on published exit
 policies to determine exit IP addresses.

 This is a fundamental design defect as the approach
 is not reliable and never will be reliable.  Is
 simple for an exit operator to override the exit
 policy in `torrc`, and if that capability were
 removed nothing prevents hacking of the code
 to the same effect.

 The correct approach is to actually scan the
 network periodically while making note of the
 SOCKS connection source IP and passing this
 information to a scan receiver daemon/thread
 via a cryptographically signed message in order
 to detect and properly document NAT translations.
 The implementation must take into account that
 a single exit relay may have several exit IPs
 that will be employed over time.

 The negative consequences of unreliable exit
 IP documentation includes especially problems
 of perception and reputation for exit node
 operators, who do not enjoy investing substantial
 time and money in a relay only to encounter
 trouble with their ISP due to the common use of
 unreliable alternative lists such as SecToor
 /24 which impose collateral damage to
 uninvolved, innocent third parties.

 Any collaterally damaged third-parties
 encountering network blocks caused by
 a neighboring Tor exit are correct to
 feel abused the the situation.

 It seems that several alternative exit scanners
 exist, including

 https://n0where.net/tor-exit-relay-scanner-exitmap/

 and it is reasonable to assert that one of these
 should be deployed in place of the current unacceptably
 broken system.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17297#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #17297 [Tor Check]: TorCheck fails on new exit egress IP not in exit DB, confusing to users
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #16620 [Tor Browser]: Transform window.name handling into Firefox patch
Next by Author: Re: [tor-bugs] #17085 [Tor]: Improve coverage on src/common/util_process.c
Previous by thread: Re: [tor-bugs] #17297 [Tor Check]: TorCheck fails on new exit egress IP not in exit DB, confusing to users
Next by thread: [tor-bugs] #17298 [Tor Sysadmin Team]: IPv6 on cappadocicum
Index(es):
- Author
- Thread