[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-relays] TOR router install without access to root

To: tor-relays@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-relays] TOR router install without access to root
From: Green Dream <greendream848@xxxxxxxxx>
Date: Wed, 25 May 2016 13:22:48 -0700
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 25 May 2016 16:23:01 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to; bh=mUZGJXd2IFKYhhAOwC5SEppqaoDcVblBc0k633tvGms=; b=LaEshogFUyq1rxMyQHItNxNGEprAIG9OKVyfFt61Mecr3DQxtrOrjgEXVbQV1ZPQIb t9GjF45mFgUBPfYT1HyVHjEbha/KxFe5x+8eMTN9RdPdc2xYJUT2HuuyPaXMMEFoki6Y iXTVmxZ0wvX5H7LoQr/eDCXWhdaScb/bK8mGk6mGTudqGQIPjucOug6KKMtIH4fPp6i4 +3w8H1jhNRjTrF3hX0jSZ1zaHRGKBPuzyXm4g9wTdeMxKDb1Hwn9/dmzvatWGTfI+wxZ 3q6mthg52TWTpKYF6S5lWXiaTs/ir+XU+t4Tj+Xk2G4/gemJDPUvLYoXOlOlKNqqdCkJ BLXA==
In-reply-to: <574600B3.4080005@xxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-relays/>
List-help: <mailto:tor-relays-request@lists.torproject.org?subject=help>
List-id: "support and questions about running Tor relays \(exit, non-exit, bridge\)" <tor-relays.lists.torproject.org>
List-post: <mailto:tor-relays@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-relays>, <mailto:tor-relays-request@lists.torproject.org?subject=unsubscribe>
References: <CALsPhAFF42gkC4Mznvwz2WigftQB6TjvBHoLGzWWFNm8Kj_40A@xxxxxxxxxxxxxx> <57455DEA.1030205@xxxxxxxxxx> <CALsPhAG7df2Dgh+EyVKyRxuY-z0+v+k-4-fsp_K8zuh6z-DRJw@xxxxxxxxxxxxxx> <5745848F.2060009@xxxxxx> <CALsPhAE4=ypT-wFTg1pwW--V3ZLdYBoPAhs+CaUqZsLHpMQ5Dg@xxxxxxxxxxxxxx> <CAEM+PCU02y5HBE3Gx4W-aDQVPuxi-19y9aO2_1LOQzsNMQ3wqg@xxxxxxxxxxxxxx> <CAAd2PDKibc-HNZ6Uq9xfu4CcCvKZqKZ61h0ds5QdS9b7KdaKCg@xxxxxxxxxxxxxx> <574600B3.4080005@xxxxxx>
Reply-to: tor-relays@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-relays" <tor-relays-bounces@xxxxxxxxxxxxxxxxxxxx>

@Paul: sure. Nils pointed out that a lot of relays using the same hosting provider could be an attack vector, because the provider would be a single point where all the relays' secret keys could be collected. My point is that if you look at the AS (Autonomous System) Number, it's normally the same for all the hosting provider's servers in that country. So if Tor path selection looks at the AS, and avoids building a circuit that uses two nodes from the same AS, this attack vector basically goes away. It's worth noting if you weren't already aware, both Atlas and Globe display the AS Number for every relay.

_______________________________________________
tor-relays mailing list
tor-relays@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Follow-Ups:
- Re: [tor-relays] TOR router install without access to root
  - From: pa011

References:
- [tor-relays] TOR router install without access to root
  - From: Markus Koch
- Re: [tor-relays] TOR router install without access to root
  - From: Petrusko
- Re: [tor-relays] TOR router install without access to root
  - From: Markus Koch
- Re: [tor-relays] TOR router install without access to root
  - From: pa011
- Re: [tor-relays] TOR router install without access to root
  - From: Markus Koch
- Re: [tor-relays] TOR router install without access to root
  - From: Nils Vogels
- Re: [tor-relays] TOR router install without access to root
  - From: Green Dream
- Re: [tor-relays] TOR router install without access to root
  - From: pa011

Prev by Author: Re: [tor-relays] TOR router install without access to root
Next by Author: Re: [tor-relays] Question on warnings
Previous by thread: Re: [tor-relays] TOR router install without access to root
Next by thread: Re: [tor-relays] TOR router install without access to root
Index(es):
- Author
- Thread