[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #7349 [Tor]: Obfsbridges should be able to "disable" their ORPort

Subject: Re: [tor-bugs] #7349 [Tor]: Obfsbridges should be able to "disable" their ORPort
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 26 Sep 2015 00:40:57 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 25 Sep 2015 20:41:06 -0400
In-reply-to: <043.333d3c6cb438bb8143315994c6cb1fc1@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <043.333d3c6cb438bb8143315994c6cb1fc1@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#7349: Obfsbridges should be able to "disable" their ORPort
-------------------------+-------------------------------------------------
     Reporter:  asn      |      Owner:  isis
         Type:  project  |     Status:  assigned
     Priority:  major    |  Milestone:  Tor: 0.2.???
    Component:  Tor      |    Version:
   Resolution:           |   Keywords:  tor-bridge SponsorZ tor-pt
Actual Points:           |  proposal-needed 028-triage
       Points:  9000+    |  Parent ID:
                         |    Sponsor:
-------------------------+-------------------------------------------------

Comment (by elypter):

 Replying to [comment:13 isis]:
 > This is about making the ORPort "ditchable".  However, it is ''not''
 about making bridges communicate to the next hop over PTs, since that
 would reveal that they are a bridge (and thus nullify most of the work I
 did for #7144).
 when i wrote this ia assumd that pluggable transports are being used that
 require a pass code so that active pobing would only be possible if the
 attacker already knows the bridge. a bridge guard only adds additional
 (bridge)security just like with a disabled or port.

 Replying to [comment:19 yawning]:
 >pointless extra overhead
 in the current state of western governments yes, tor is kind of tolerated
 but the ice is middle thick. however trusting in the status quo of the
 internet seems to be a rather risky security model in long term. there
 doesnt even have to be an evil government censor overlord. it could be
 enough if isps throttle down tor connections for "traffic optimization"
 and the goverment looks away. and yes ips are still public but there is
 not only a technical side to censorship there is also a legal one
 especially in democracies. ratelimiting or blocking specific pattern
 shapes might be perfectly legal while blocking ips is not.
 "ditching or port alltogether" was a bit provocative.
 what i wanted to promote was that the nodes should be able to choose their
 transport freely so the network can adapt to its environment.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7349#comment:20>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #17068 [Tor]: encourage tor users to visit websites at the same time of the day
Next by Author: Re: [tor-bugs] #17069 [Tor]: use domain fronting for all outgoing connections to cdn hosted websites
Previous by thread: Re: [tor-bugs] #7349 [Tor]: Obfsbridges should be able to "disable" their ORPort
Next by thread: [tor-bugs] #17033 [metrics-lib]: failing tests due to system locale
Index(es):
- Author
- Thread