<p dir="ltr">If your goal is to choose an exit specially to minimize risk of it being run by a malicious actor, it seems choosing exits run by orgs you trust would be better than choosing based on where someone is hosting a server.</p>
<p dir="ltr">But yes, you can choose exits by country. I'm not saying it's a good idea or that hard choosing exits in any fashion is good for the network. (It's not.)</p>
<p dir="ltr"><a href="http://www.2byts.com/2012/03/09/how-to-configure-the-exit-country-on-tor-network/">http://www.2byts.com/2012/03/09/how-to-configure-the-exit-country-on-tor-network/</a><br>
<a href="http://tor.stackexchange.com/questions/733/can-i-exit-from-a-specific-country-or-node">http://tor.stackexchange.com/questions/733/can-i-exit-from-a-specific-country-or-node</a></p>
<p dir="ltr">-tom</p>
<div class="gmail_quote">On Jun 18, 2014 1:41 AM, "JP Wulf" <<a href="mailto:wulf.jp@gmail.com">wulf.jp@gmail.com</a>> wrote:<br type="attribution"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr"><div><div><div><div><br>So Griffin Boyce is canvasing for some input to improve Tor, specifially for Journalists.<br><a href="https://twitter.com/abditum/status/479052228138119168" target="_blank">https://twitter.com/abditum/status/479052228138119168</a><br>
</div><br>1. It is known that various actors are trying to compromise Tor comms by establishing <br></div>own exit nodes. With enough nodes, they can break Tor (see slides).<br><br></div>2. Idea: Is it possible to allow the end user to determine the geo-location (with various degrees of fine tuning from hemisphere, through continental, to top country domain to regional?<br>
</div><div>(I have NFI about the inner workings of TOR protocol and new work on it)<br><br></div><div>For example. Say a journalist in Russia is using Tor, s/he declares in their tor client, that they only want to use exit nodes in South America and Australia. Thus minimising the chance the nodes are owned.<br>
<br></div><div>This geolocation could perhaps be used to validate the integrity of the nodes (how I dont know, maybe by establishing TOR honeypots that can only be compromised through traffic through a compromised (owned) exit node).<br>
</div><div><br></div><div>Risk:<br></div>This is a rats nest, because if implemented incorrectly it may allow hostile actors to direct exit nodes to those that are owned.<br><div><div><div><div><div><div><br></div><div>Thanks for reading my fiction. Maybe its useful in the light of what Griffin is asking about.<br>
</div><div><br><br>-- <br>JP Wulf<br>Problem Solution Engineering<br><a href="http://nomeonastiq.com/" target="_blank">http://nomeonastiq.com/</a>
</div></div></div></div></div></div></div>
<br>_______________________________________________<br>
tor-dev mailing list<br>
<a href="mailto:tor-dev@lists.torproject.org">tor-dev@lists.torproject.org</a><br>
<a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev" target="_blank">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev</a><br>
<br></blockquote></div>