Re: [tor-dev] Proposal 211: Internal Mapaddress for Tor Configuration Testing

2012-10-15 Thread Mike Perry
Thus spake Nick Mathewson (ni...@alum.mit.edu): > On Mon, Oct 15, 2012 at 4:38 PM, Mike Perry wrote: > [...] > >> What does that protect against? My first thought is that you're > >> trying to prevent the case where a malicious local DNS server maps > >> "selftest.torproject.org" to some IP addr

Re: [tor-dev] Proposal 210: Faster Headless Consensus Bootstrapping

2012-10-15 Thread Mike Perry
Thus spake Nick Mathewson (ni...@alum.mit.edu): > On Thu, Oct 11, 2012 at 5:32 AM, Mike Perry wrote: > > Title: Faster Headless Consensus Bootstrapping > > Author: Mike Perry > > > > Design: Bootstrap Process Changes > > > > The core idea is to attempt to establish bootstrap connections in > >

Re: [tor-dev] Proposal 211: Internal Mapaddress for Tor Configuration Testing

2012-10-15 Thread Nick Mathewson
On Mon, Oct 15, 2012 at 4:38 PM, Mike Perry wrote: [...] >> What does that protect against? My first thought is that you're >> trying to prevent the case where a malicious local DNS server maps >> "selftest.torproject.org" to some IP address in their control, and >> then just runs a server at tha

Re: [tor-dev] Proposal 211: Internal Mapaddress for Tor Configuration Testing

2012-10-15 Thread Mike Perry
Thus spake Nick Mathewson (ni...@alum.mit.edu): > On Thu, Oct 11, 2012 at 5:38 AM, Mike Perry wrote: > > Design Overview > > > > The system will have three parts: an internal hard-coded IP address > > mapping (127.84.111.114:80), a hard-coded mapaddress to a DNS name > > (selftest.torproject.o

Re: [tor-dev] Proposal 210: Faster Headless Consensus Bootstrapping

2012-10-15 Thread Nick Mathewson
On Thu, Oct 11, 2012 at 5:32 AM, Mike Perry wrote: > Also at: > https://gitweb.torproject.org/user/mikeperry/torspec.git/blob/consensus-bootstrap:/proposals/xxx-faster-headless-consensus-bootstrap.txt > > - > > Title: Faster H

Re: [tor-dev] Proposal 211: Internal Mapaddress for Tor Configuration Testing

2012-10-15 Thread Nick Mathewson
On Thu, Oct 11, 2012 at 5:38 AM, Mike Perry wrote: > Also at: > https://gitweb.torproject.org/user/mikeperry/torspec.git/blob/mapaddress-check:/proposals/xxx-mapaddress-tor-status.txt > > --- > > Title: Internal Mapaddress for Tor Configu

Re: [tor-dev] Proposal 207: Directory guards

2012-10-15 Thread Nick Mathewson
On Mon, Oct 15, 2012 at 2:48 PM, Mike Perry wrote: [...] > Again, this experimentation is already done. It's quite clear that > adding more objects to the world of Guard activity reduces traffic > fingerprinting accuracy, regardless of if that activity is concurrent > with client traffic or not.

Re: [tor-dev] Proposal 207: Directory guards

2012-10-15 Thread Mike Perry
Thus spake Nick Mathewson (ni...@alum.mit.edu): > On Fri, Oct 12, 2012 at 10:53 PM, Mike Perry wrote: > > Thus spake Nick Mathewson (ni...@alum.mit.edu): > > > >> On Fri, Oct 12, 2012 at 3:17 PM, Mike Perry > >> wrote: > >> > Thus spake Nick Mathewson (ni...@torproject.org): > >> >> Discussion:

Re: [tor-dev] Proposal 207: Directory guards

2012-10-15 Thread Nick Mathewson
On Fri, Oct 12, 2012 at 10:53 PM, Mike Perry wrote: > Thus spake Nick Mathewson (ni...@alum.mit.edu): > >> On Fri, Oct 12, 2012 at 3:17 PM, Mike Perry wrote: >> > Thus spake Nick Mathewson (ni...@torproject.org): >> >> Discussion: >> >> >> >>The rule that the set of guards and the set of dire