subject:"Re\: \[tor\-relays\] Who is permanently checking my bridge relay\?"

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread teor

Hi,

> On 4 Dec 2018, at 21:27, tscha...@posteo.de wrote:
> 
> Hi all!
> 
> I wonder who is permanently connecting/checking(?) my Tor bridge relay.
> The ip is 66.111.2.129 and the period of the connects are 21 min 21 sec,
> e.g.:
> 
> Dec  4 10:32:00 SRC=66.111.2.129
> Dec  4 10:53:21 SRC=66.111.2.129
> Dec  4 11:14:43 SRC=66.111.2.129
> Dec  4 11:36:04 SRC=66.111.2.129
> Dec  4 11:57:26 SRC=66.111.2.129
> Dec  4 12:18:52 SRC=66.111.2.129
> 
> https://metrics.torproject.org/rs.html#search/66.111.2.129 gives no match.
> 
> Any more experiences with other bridges?

A few years ago, I opened a ticket to randomise authority reachability testing:
https://trac.torproject.org/projects/tor/ticket/13928

But we triaged it out with the comment:
My rationale for redlining it during triage was that the best place to do 
unpredictable-order testing is probably in a successor to torflow.

(sbws is a successor to torflow, and it does randomise the testing order.)

Are there any good reasons to randomise the order of authority tests?

One good reason is that it breaks patterns in the authority checks, so relays
really do need to be up all the time to be listed as reachable.

T


signature.asc
Description: Message signed with OpenPGP
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread Mirimir

On 12/04/2018 06:43 AM, Charly Ghislain wrote:
> If it wasn't, would posting the ip address of a client connecting to a
> bridge in here compromise her anonymity and/or allow one to
> firewall/blacklist her traffic?
> Im assuming one could guess the ip address of the running bridge based on
> the poster email address.

You'd think that someone running a bridge would know not to post
connecting IPs on a public mail list.

> On Tue, Dec 4, 2018 at 2:57 PM  wrote:
> 
>> On 2018-12-04 13:15, George wrote:
>>
>>> tscha...@posteo.de:
>>
 I wonder who is permanently connecting/checking(?) my Tor bridge relay.
>>>
>>>
>>> That's the bridge directory authority.
>>
>> Ok, thank you.
>> ___
>> tor-relays mailing list
>> tor-relays@lists.torproject.org
>> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>>
> 
> 
> 
> ___
> tor-relays mailing list
> tor-relays@lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
> 
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread Nathaniel Suchy

For adversaries such as an authoritarian government. They have the capability 
to port scan every host on the internet and then try to connect with Tor 
Protocol to every port and then block suspected bridges automatically. The 
Chinese government could easily tell China Unicom to let us send traffic across 
all of your IP Ranges at random and they would have to comply. If this is your 
threat model a Private OBFS4Proxy Bridge (not published in BridgeDB and 
blocking the ORPort (only allow the OBFS4 Port) might be a better solution for 
you :)

Cordially,
Nathaniel Suchy

Dec 4, 2018, 8:43 AM by charlyghisl...@gmail.com:

> If it wasn't, would posting the ip address of a client connecting to a bridge 
> in here compromise her anonymity and/or allow one to firewall/blacklist her 
> traffic?
> Im assuming one could guess the ip address of the running bridge based on the 
> poster email address.
>
> On Tue, Dec 4, 2018 at 2:57 PM <> tscha...@posteo.de 
> > > wrote:
>
>> On 2018-12-04 13:15, George wrote:
>>  
>>  > >> tscha...@posteo.de >> :
>>  
>>  >> I wonder who is permanently connecting/checking(?) my Tor bridge relay.
>>  >
>>  >
>>  > That's the bridge directory authority.
>>  
>>  Ok, thank you.
>>  ___
>>  tor-relays mailing list
>>  >> tor-relays@lists.torproject.org 
>>  >> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays 
>> 
>>

___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread Charly Ghislain

>
> Few people use their Tor nodes as mail servers, and regardless, it's a
> bad idea to run any other services on the same IP/hardware as a Tor node.


> The OP was using @posteo.de which is a common email provider, regardless.


True, but the link  ->   ->  may be easier for someone with relevant data/power
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread George

Charly Ghislain:
> If it wasn't, would posting the ip address of a client connecting to a
> bridge in here compromise her anonymity and/or allow one to
> firewall/blacklist her traffic?

Valid point Charly.  IP addresses from bridges shouldn't be posted here.

I was stunned that someone actually noticed that in their logs in the
first place. It's nice to see someone at least browsing their logs :)

> Im assuming one could guess the ip address of the running bridge based on
> the poster email address.

Few people use their Tor nodes as mail servers, and regardless, it's a
bad idea to run any other services on the same IP/hardware as a Tor node.

The OP was using @posteo.de which is a common email provider, regardless.

g


-- 

34A6 0A1F F8EF B465 866F F0C5 5D92 1FD1 ECF6 1682
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread Charly Ghislain

If it wasn't, would posting the ip address of a client connecting to a
bridge in here compromise her anonymity and/or allow one to
firewall/blacklist her traffic?
Im assuming one could guess the ip address of the running bridge based on
the poster email address.

On Tue, Dec 4, 2018 at 2:57 PM  wrote:

> On 2018-12-04 13:15, George wrote:
>
> > tscha...@posteo.de:
>
> >> I wonder who is permanently connecting/checking(?) my Tor bridge relay.
> >
> >
> > That's the bridge directory authority.
>
> Ok, thank you.
> ___
> tor-relays mailing list
> tor-relays@lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
>
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

2018-12-04 Thread George

tscha...@posteo.de:
> Hi all!
> 
> I wonder who is permanently connecting/checking(?) my Tor bridge relay.


That's the bridge directory authority.

g


-- 

34A6 0A1F F8EF B465 866F F0C5 5D92 1FD1 ECF6 1682
___
tor-relays mailing list
tor-relays@lists.torproject.org
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Re: [tor-relays] Who is permanently checking my bridge relay?

Re: [tor-relays] Who is permanently checking my bridge relay?

Re: [tor-relays] Who is permanently checking my bridge relay?

Re: [tor-relays] Who is permanently checking my bridge relay?

Re: [tor-relays] Who is permanently checking my bridge relay?

Re: [tor-relays] Who is permanently checking my bridge relay?

Re: [tor-relays] Who is permanently checking my bridge relay?

7 matches

Site Navigation

Mail list logo

Footer information