[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #17142 [Tor]: allow remote portforwarding on exit nodes

Subject: Re: [tor-bugs] #17142 [Tor]: allow remote portforwarding on exit nodes
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 25 Sep 2015 13:25:10 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 25 Sep 2015 09:25:30 -0400
In-reply-to: <047.e28833ab7aa57494048eade6ef344c81@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <047.e28833ab7aa57494048eade6ef344c81@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#17142: allow remote portforwarding on exit nodes
-----------------------------+---------------------------------
     Reporter:  iwtcitp      |      Owner:
         Type:  enhancement  |     Status:  new
     Priority:  minor        |  Milestone:  Tor: very long term
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+---------------------------------

Comment (by iwtcitp):

 if the exit node owns enough ip adresses it could redirect multiple
 services with the same port. thats probably only affordable with ipv6 ips.
 if only one ip is available then at least for tls connections with sni
 several services could share one port. im not sure though if a connection
 could be securely redirected without decrypting it.
 if a user has to register his hidden server at a whitelist provider(using
 email or captcha) and the hidden servers pull the list on a regular basis
 then it would be like any other provider who provides free access to
 limited resources. And that works most of the time. besides that the exit
 nodes could also tell the whitelist provider who is using their ports so
 users who use the same port on multiple exit nodes at the same time get
 banned.
 Since many services would probably be webservers who should use tls anyway
 and since for most other services the availability of the default port is
 not important, collisions should not be that frequent.

 ...yeah that sounds like a lot of work but its not intrinsically flawed.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17142#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #17142 [Tor]: allow remote portforwarding on exit nodes
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #12505 [BridgeDB]: Refactor BridgeDB's hashrings
Next by Author: Re: [tor-bugs] #17151 [Tor]: FreeBSD: fix test_bt failures
Previous by thread: Re: [tor-bugs] #17142 [Tor]: allow remote portforwarding on exit nodes
Next by thread: [tor-bugs] #17143 [GetTor]: Test ticket for GetTor component owner ilv to test email notifications for new tickets
Index(es):
- Author
- Thread