[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Exit node connection statistics
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Exit node connection statistics
- From: coderman <coderman@xxxxxxxxx>
- Date: Mon, 14 Jul 2008 11:03:03 -0700
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Mon, 14 Jul 2008 14:03:08 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=uTI9qQ4S5+SprtVqyUHBBcEtSEpBZpRRzM97Dr6P28U=; b=kxX981SqiUx++T4cb1gw0/qdtfCd/oxhXN0OzldFEldTy5Pc3E6NFp/8eEnJqBqwY9 sluvifhgmHj23jMhsKQXlufCpZ2JOOAQLWr0KJlcehq/g6Q8kQzARxE1HZjx8FzhoXEe b9MkBUH847OHciHG1oyWPaZWa6YSf67NtSC0M=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=OykvaD5cu7Nx9QhaO09rXFgUe/aN8Yklwact0Ecxprhhdi21ct6rfrVs12FcQAIo5u Ud5tLCv0Rtkii0tPWAF6ijCHonfFqBzCKS96l8brzHGbgz7NNSnJ0RooZnq7GTJZGRWS /87WY1p6G4XTTXAd1edv5e67UZFfr+OGmYqCs=
- In-reply-to: <3882-53716@xxxxxxxxxxxxxx>
- References: <549-04850@xxxxxxxxxxxxxx> <487B1E9D.8010105@xxxxxxxx> <3882-53716@xxxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
On Mon, Jul 14, 2008 at 8:43 AM, <mplsfox02@xxxxxxxxxxxxxx> wrote:
>
>... do you blindly trust all other Tor operators until they show some
> "bad" behaviour?
>
> [that's] nothing but security by obscurity.
this is why use of SSL/TLS over Tor is so strongly encouraged.
> Can you explain what the threat scenario is for what I'm doing?
> ...
> I'm not argument-resistant. So tell me your views.
the strongest argument is not for the privacy of those who exit your
node, but your own personal liability for knowing what exits your
node. see the Tor Legal FAQ:
https://www.torproject.org/eff/tor-legal-faq.html.en
"""
Should I snoop on the plaintext that exits through my Tor relay?
No. You may be technically capable of modifying the Tor source code or
installing additional software to monitor or log plaintext that exits
your node. However, Tor relay operators in the U.S. can create legal
and possibly even criminal liability for themselves under state or
federal wiretap laws if they affirmatively monitor, log, or disclose
Tor users' communications, while non-U.S. operators may be subject to
similar laws. Do not examine the contents of anyone's communications
without first talking to a lawyer.
"""
best regards,