Roger Dingledine:
[snip]
> That is, I think these extra restrictions (avoiding the relays) would be
> a slight improvement to security in theory, but I see that as outweighed
> by the loss of robustness and by the other security angle (avoiding
> letting people probe our internal network knowledg
On Sun, Sep 12, 2021 at 12:17:37PM -0700, Neel Chauhan wrote:
> If a relay has the MiddleOnly flag, we do not allow it to be used for the
> following purposes:
>
> * Entry Guard
While we're trying to be exhaustive here, "Directory Guard" might be a
good addition to this list. (But trying to be
Hi nusenu,
On 2021-09-12 14:47, nusenu wrote:
thanks for these pointers.
In case "ExcludeGuardNodes" option is accepted and merged, the
documentation should explicitly point out
the differences between
LimitToMiddleOnlyNodes NodeX
vs.
ExcludeGuardNodes NodeX
+
ExcludeExitNodes NodeX
thanks,
n
Sorry, my bad.
The ExcludeMiddleNodes did give a good idea for a new feature I already have a
MR for:
* https://gitlab.torproject.org/tpo/core/tor/-/issues/40466
* https://gitlab.torproject.org/tpo/core/tor/-/merge_requests/436
It's unrelated to this PR, though, and I don't know if it wil
Hi,
On 2021-09-12 12:31, nusenu wrote:
Neel Chauhan:
Also ensure this functionality is available to tor clients via a
torrc option like "ExcludeExitNodes" can be used by tor clients as
well.
The torrc option for clients could be named
"LimitToMiddleOnlyNodes" or similar and takes a list of rel
Neel Chauhan:
Also ensure this functionality is available to tor clients via a
torrc option like "ExcludeExitNodes" can be used by tor clients as
well.
The torrc option for clients could be named
"LimitToMiddleOnlyNodes" or similar and takes a list of relay
fingerprints and can appear multiple t
Hi nusenu,
On 2021-09-10 16:05, nusenu wrote:
Thank you for working on this,
I was hoping for such a flag for a long time,
great to see that it is happening now.
No problem!
The flag should minimize the ability of the relay to do harm.
This means such relays should _not_ be used by tor clien
Hi,
I have an updated proposal.
On 2021-09-07 13:52, s7r wrote:
Don't worry -- it's glad to have you back always. Thanks. No judging
anywhere around here by any means :)
No problem!
The proposal looks much better with the motivation section, at least
me know what's all about.
Thanks!
So