[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: single hop proxy?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: single hop proxy?
From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
Date: Wed, 18 Nov 2009 19:47:34 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Wed, 18 Nov 2009 19:53:39 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=Q/Hu90yBzMSkoV+Ga6C8GuJH1g72MjOSAlVGRKqXzwk=; b=v9OU5T4ShEszDps8a9iZhOTSf2DkLU8vMzxDHMjtE3NjQhuyU8im0jEvX/U0qwhTyY tXy4gaD9BLLsh6vtzWNGnWaUbPzIAM7uAjdQz4jedZhi2rCS9g2zsVF8M3ZlsZDwpr0G qVvj1xoFCsOg2FqjQPu54B86nBLALcQ5bUSYY=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=d+3bMEakCvQUcvgbufK5mliDRUppDKnciqdbQZXo8qIQC3/1/KZpU859s4uebLTQmg 5YhuucWbBj4QDl85HZJ5GmJ+QP+lQrAeGm/QzORYle6R5JTblJZSJOPmlxd5C+DawMUE 7rXMK01fhD+pR3vt/ovDad+rl5VKOomg4BTcc=
In-reply-to: <40561.1258586229@xxxxxxxxx>
References: <40561.1258586229@xxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On Wed, Nov 18, 2009 at 6:17 PM, moris blues <moris@xxxxxxxxx> wrote:
> hi,
> can someone tell me what it mean:
> letting Tor be used as a single hop proxy makes exit nodes a more attractive target for compromise?
> What is a songle hop Proxy, i know only my Onion Proxy.
> And how do this attack work?

This is a 'single hop':

[user]----[exit node]---[internet site]

If single hops were allowed then there would be some exit nodes which
could contain logging data which directly identified a user.

The existence of single hop traffic would encourage people to
compromise, spy on, or capture exit nodes in the hopes that the
traffic they are interested in happened to be single-hop traffic.

It would also provide a ready excuse for parties with no genuine
expectation of obtaining useful information to harass exit node
operators with equipment capture or records requests. Since single hop
connections are always denied any exit operator can always honestly
answer that he does not have and could not have any records related to
the users of his exit, and he can provide this answer without any
analysis or consideration.
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

References:
- single hop proxy?
  - From: moris blues

Prev by Author: Re: Reduce hops when privacy level allows to save Tor network bandwidth
Next by Author: Re: HTML5 deanonymization attacks
Previous by thread: single hop proxy?
Next by thread: weak algorithm in tor
Index(es):
- Author
- Thread