Re: [tor-dev] Onion Services and NAT Punching

2015-10-26 Thread Alec Muffett
> On Oct 26, 2015, at 11:34, Alec Muffett wrote: >> Of course. All the cases where you set up a hidden service >> exactly because your host is behing a NAT. >> Like the webcam raspi I'm just booting up. > > We run our tor daemons in a enclave network which can only connect outbound > to the Int

Re: [tor-dev] Onion Services and NAT Punching

2015-10-26 Thread Alec Muffett
> On Oct 1, 2015, at 06:15, Andreas Krey wrote: > >> Are there any use cases that: >> * need NAT punching, >> * don't need service location anonymity, and >> * would benefit from lower latency? > > Of course. All the cases where you set up a hidden service > exactly because your host is behing

Re: [tor-dev] Onion Services and NAT Punching

2015-10-04 Thread Aaron Johnson
NAT-punching in single-onion services seems to me to be a clear functionality improvement with an unclear effect on security. The NAT-punching protocol that we settled on at the dev meeting was: 1. The single-onion service (SOS) maintains a direct connection to an IP. 2. A client does an HSDi

Re: [tor-dev] Onion Services and NAT Punching

2015-10-04 Thread Paul Syverson
On Wed, Sep 30, 2015 at 05:12:53PM +0200, Tim Wilson-Brown - teor wrote: > Hi All, > > Do you know a use case which needs Single Onion Services and NAT punching? > > We’re wondering if there are mobile or desktop applications / > services that would use a single onion service for the performance

Re: [tor-dev] Onion Services and NAT Punching

2015-10-01 Thread Nathan Freitas
On Thu, Oct 1, 2015, at 01:15 AM, Andreas Krey wrote: > On Wed, 30 Sep 2015 17:12:53 +, Tim Wilson-Brown - teor wrote: > ... > > Are there any use cases that: > > * need NAT punching, > > * don???t need service location anonymity, and > > * would benefit from lower latency? > > Of course. All

Re: [tor-dev] Onion Services and NAT Punching

2015-09-30 Thread Andreas Krey
On Wed, 30 Sep 2015 17:12:53 +, Tim Wilson-Brown - teor wrote: ... > Are there any use cases that: > * need NAT punching, > * don???t need service location anonymity, and > * would benefit from lower latency? Of course. All the cases where you set up a hidden service exactly because your host

Re: [tor-dev] Onion Services and NAT Punching

2015-09-30 Thread David Stainton
Hi All, Hi Tim! > Do you know a use case which needs Single Onion Services and NAT punching? chyaa! NAT has ruined the Internet, violates the end to end principal and make it more difficult to develop decentralized systems. *deep sigh*... Obviously, centralized systems design contributes to human