[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
From: Nathaniel Suchy <me@xxxxxxxxxxx>
Date: Mon, 27 Aug 2018 20:47:46 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 27 Aug 2018 20:48:10 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lunorian.is; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=ISsJyZ5tyE1TgOBds4DZA5JjlGAPUdpovxBXzENgABo=; b=gvIKDFu5iq4rXlRJhsaFVcXOz26lZY8r/kIfLhDDxqFsC6GpmnvyW/rh/XvCMZAu4M ZPOI9IBW6pOLGYhMetel7H1Tiui7vdoel5aX3/WKL34OOcXbPl9dv7sjvoHEAAICswjb e6l9Qergs3U6Hl835+RI5mmA5OCCH0Zv8G9aSewfaK0g6f2T0FpjWynWTHHhpH1dw4Em ybcx21EpwJKDIjAuWbaKVjHbOQnSiw6UHDwUZTLincBdDkhOQguyQAR5/yIkBFTGwM2x sgB9txY/DUFCrhbclrOblvnGiImRUgbBotbYHEesUyZmNIRNwXLKhPK5j1Jn8ZqV2pfX fn2A==
In-reply-to: <eeca89a1-6ced-6b30-bc95-1fb94acb6a9e@yui.cat>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <CAGzwqTHB1LyaQpkXpbp1ssTstj5icR6wF2eahnbdGMoke92how@mail.gmail.com> <72805219-6a35-7a60-278a-4d7b4beff641@yui.cat> <1f1f2ae8-cf22-d0b2-a631-3c8ce9da8699@riseup.net> <f559f9d2-5433-ba9d-2984-933c890390f0@yui.cat> <3f9145a5-741b-c546-20d0-7ebcacc9324f@riseup.net> <eeca89a1-6ced-6b30-bc95-1fb94acb6a9e@yui.cat>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

Jordan,

Tor will already avoid making circuits where two IP Addresses in the same /24 are involved. The research in this paper (https://www.freehaven.net/anonbib/cache/DBLP:conf/ccs/EdmanS09.pdf) is becoming more relevent and is worth discussing as more ISPs come out with the goal of hosting lots and lots of exit relays.

Lives are involved and we've invested a lot of time in protecting our infrastructure. tCould Conrad and I go rouge and collect relay keys? Yes we have the technical capability to access data on any virtual machine hosted on our infrastructure, but so could DigitalOcean, Scaleway, BuyVM, and the several other big ISPs hosting exit relays on Virtual Machines.

> There is little administrative overhead for Conrad to distribute a

MyFamily directive for use with relays hosted on his systems.

Two things:

1) Today, sure, I guess its easy, what if we have 100 or 1000 clients tomorrow all hosting exit relays. It suddenly gets much more complicated than it was at first. Why aren't people asking Digitalocean and Scaleway to do the same? After all Digitalocean and Scaleway have way more staff who could be dedicated Tor relay managers. See the logic here?

2) We can't force our clients to modify their MyFamily directive in their torrc files. There's the possibility they refuse to modify.

In the end, it's about trusting your provider. Tor's threat model shouldn't rely on hosting providers playing nice. It should continue to rely on the continued split of trust. Although, better path selection could play in here :)

Cordially,

Nathaniel Suchy

On Mon, Aug 27, 2018 at 8:37 PM Jordan <jordan@xxxxxxx> wrote:

>> No, because Digital Ocean doesn't market itself as a relay hoster-- the
>> percentage of relay-hosting clients wouldn't even near 0.1%.
>
> What difference does that make?

You quoted it, you can read it again if you'd like.

There is little administrative overhead for Conrad to distribute a
MyFamily directive for use with relays hosted on his systems.

I care not for petty back-and-forth's when lives are at stake, sorry.

--
Jordan
https://yui.cat/
_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: Jordan
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: teor

References:
- [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: zimmer linux
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: Jordan
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: Mirimir
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: Jordan
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: Mirimir
- Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
  - From: Jordan

Prev by Author: Re: [tor-relays] Exit in Turkey blocking torproject (komm EA93C), BadExit, Node Subscription Services, Censorship
Next by Author: Re: [tor-relays] Tor Meetup Hamburg, August 31st
Previous by thread: Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
Next by thread: Re: [tor-relays] 4 of Conrad Rockenhaus trial servers are in the top ten exit relays for Canada
Index(es):
- Author
- Thread