[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Scaling tor for a global population

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Scaling tor for a global population
From: Griffin Boyce <griffin@xxxxxxxxxxxxx>
Date: Mon, 29 Sep 2014 03:32:03 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 29 Sep 2014 03:32:19 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cryptolab.net; s=stigmate; t=1411975923; bh=O/pKXJ8Vd/r+L/EsipNrBZj9Rg2ikJzyvKiFQkS6wdg=; h=Date:From:To:Subject:In-Reply-To:References; b=UXdK6yaBhCV+voVoHLm9cgO5xgdkjFiggMBDIunXhCK7t7H5RlZoR4MTCOxuGKeye tm3kPN9LwW3Z70PRmSikqSeCjDuuEQc8NbxjF9Fi2+KS8NDIi4UAGTnhfV9tQMKXPZ S0h5HhBpTx1+3rlkJxl0mHLwlrE/RmGeeaNwr3Gg=
In-reply-to: <4748356D-BDBB-43CB-BDE9-1BB72DF78F9A@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <54257F2B.1040707@xxxxxxxxxxxxx> <20140927001807.GH18840@xxxxxxxxxxxxxx> <20140927032800.GI18840@xxxxxxxxxxxxxx> <CA+cU71=+b2cTsiF=Yeo+nS3q+DG2D3SKTd8wKA9EQi36hv=qzQ@xxxxxxxxxxxxxx> <179B9B28-B993-4C80-B23A-9E61281858DA@xxxxxxxxxxxxxx> <CA+cU71kETF=nyVW3KE-UFoX-EAdJccX0SJsu-CHiafj_4Mf+_g@xxxxxxxxxxxxxx> <4748356D-BDBB-43CB-BDE9-1BB72DF78F9A@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>
User-agent: Roundcube Webmail

I'd say that the idea to 'downgrade' people into being bridges is agood one, if done without requiring user input. 'Everyone run a relay'might only be useful because so many of the people we say it to havefast connections. It seems reasonable to filter out persistently lowconnections (and allow them back in if their connection speed improves).That is not to say that every potential bridge should actually beaccepted as a bridge. The 28B/s bridge is nuts - either it's on anembedded device or their torrc is misconfigured.

What I usually recommend is to users is based on their bandwidth andhow frequently their IP changes. If their connection is fast and theirIP never changes (eg, a desktop or server), then run a non-exit relay[2]. For a laptop that moves to-from work, then a relay or bridge. Ifit moves a *lot*, use Cupcake (which is a wrapper for flashproxy).Running a relay on a raspi or a router (?!) is not a great idea --though people attempt both. If things could gracefully switch frombeing a relay to a bridge based on their speed, then that would actuallymake it more straightforward for users because they don't have to worryabout whether they should be a bridge or relay.

People can't really estimate their own bandwidth without somethinglike NDT, but they have an idea of how fast it is. eg, this connectionis 21Mb/s up, 6mb/s down, but that's mostly irrelevant because myperception of it is that it's Fast. That perception would be the sameif I were getting 2Mbp/s up/down. So maybe one non-technical change wecan make is to user education and website documentation -- run a relayif you have a Fast connection.

Filtering people out based on advertised bandwidth is tricky -advertised bandwidth is only useful if it's based on reality. 250kb/sseems like a reasonable floor for both relays and bridges. 100kb/s iskind of the sanity check for a distributed bridge - if it's below that,it's not useful enough IMO.

The real questions for me are: how much of a gain is possible? andwhat is the right balance between number of relays and speed of thoserelays? and I suspect that until something is tried, it may just bespeculation.


best,
Griffin

[2] No one should be running an exit from home, and no one who is askingme about this at an event should be running an exit.



--
"I believe that usability is a security concern; systems that do
not pay close attention to the human interaction factors involved
risk failing to provide security by failing to attract users."
~Len Sassaman
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Scaling tor for a global population
  - From: isis

References:
- [tor-dev] Scaling tor for a global population
  - From: Andrew Lewman
- Re: [tor-dev] Scaling tor for a global population
  - From: Mike Perry
- Re: [tor-dev] Scaling tor for a global population
  - From: Mike Perry
- Re: [tor-dev] Scaling tor for a global population
  - From: Tom Ritter
- Re: [tor-dev] Scaling tor for a global population
  - From: Sebastian Hahn
- Re: [tor-dev] Scaling tor for a global population
  - From: Tom Ritter
- Re: [tor-dev] Scaling tor for a global population
  - From: Sebastian Hahn

Prev by Author: Re: [tor-dev] Making and distributing custom TBB with a new "home-page"
Next by Author: Re: [tor-dev] Symlink to latest sources
Previous by thread: Re: [tor-dev] Scaling tor for a global population
Next by thread: Re: [tor-dev] Scaling tor for a global population
Index(es):
- Author
- Thread