[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Uptime Sanity Checking
- To: or-dev@xxxxxxxx
- Subject: Re: Uptime Sanity Checking
- From: "Kevin Bauer" <ksbauer@xxxxxxxxx>
- Date: Thu, 8 Mar 2007 16:00:33 -0700
- Delivered-to: archiver@seul.org
- Delivered-to: or-dev-outgoing@seul.org
- Delivered-to: or-dev@seul.org
- Delivery-date: Thu, 08 Mar 2007 18:00:47 -0500
- Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:reply-to:to:subject:mime-version:content-type; b=cbHmtztQ/XH9Kc6nebNlJVKNbCiTFgAEBuQhnfUAcQ1jKxPam7CBmpl4PIvmIDXMw1eX9EGERdzNHWV9liKhFXRcO9u81b2Hb+HeZT3tNT9sNxS7xMOzoBukylBnucg4A2tiRv43qdT0yCVxS9rFpDpGL9dJZQ4z7uvjElQBXIg=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type; b=kF7Ot1/j8v05qFRUq3jrLybzqIaWdJ8yZrnC879OSIbNojHB22jIiQeINvystG+69YWGu/JDZ0AWbpejRQm8eanw746E4WcrQJnh+TA9Mm0atf9oK1d7AgUSWnePs1jgKIPbE+x5JP/12n/InyjSk5EEDWVs4Jb67pAwoe0FYUE=
- Reply-to: or-dev@xxxxxxxxxxxxx
- Sender: owner-or-dev@xxxxxxxxxxxxx
On Thu, 08 Mar 2007, Damon Liwanu Mc Coy wrote:
> We propose that uptime be capped at two months.
> Currently there are approximetly 50 nodes with this
> amount of uptime, and the average uptime is around 9
> days. This cap would prevent these 50 nodes from
> being displaced by an attacker.
Could you please explain to me what the point of this change is?
Especially in the light that - to my understanding - Tor only ever uses
the median of the uptime values, never the average. Assuming my
understanding is correct this would effectively be a non-op, isn't that
so?
Cheers,
Peter
--
This patch is aimed at preventing a number of malicious servers from advertising arbitrarily high uptimes. Currently, this could be used to displace entry guards by raising the median uptime value for the network. Our fix would cap the median uptime value at 2 months (rather than n years, centuries, millennia, etc. as is currently possible).
Kevin