Thanks for the info guys!(:<span></span><br><br>On Sunday, August 17, 2014, Paul Syverson <<a href="mailto:paul.syverson@nrl.navy.mil">paul.syverson@nrl.navy.mil</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
On Mon, Aug 18, 2014 at 04:41:33PM +1200, Christian Gagneraud wrote:<br>
> On 18/08/2014 4:26 p.m., Rex Wolf wrote:<br>
> >On 17/08/2014 9:11 PM, IceFish ThreeTwo wrote:<br>
> >>I'm pretty sure I read somewhere that the Family option in torrc is<br>
> >>used so that nodes administrated by the same person never make a<br>
> >>circuit with each other, which somehow protects anonymity. Should my<br>
> >>friend and I put each other's fingerprints in the Family field? Seems<br>
> >>logical since we know each other and if the point of theFamily field<br>
> >>is to protect anonymity.<br>
> ><br>
> >Hi IceFish,<br>
> ><br>
> >The MyFamily option is what you've described--an option used so that<br>
> >nodes administered by the same person / entity will only be used once in<br>
> >any given circuit (other nodes from the same family will not be used in<br>
> >the same circuit).<br>
> ><br>
> >This isn't so much to protect your anonymity as a relay operator, but to<br>
> >limit any one client's potential vulnerability. For example, if one<br>
> >relay operator happens to control both the guard node and the exit node<br>
> >in a circuit, they can correlate the timing of packets entering and<br>
> >exiting the network, and determine both a person's identity and the<br>
> >content of their traffic.<br>
><br>
> On the other hand, if I'm a bad guy who as lot of entry and exit nodes, I<br>
> will certainly not disclosed it by using a "MyFamily" flag...<br>
<br>
Right. It's not meant to guard against that. But if you're honest and<br>
you are threatened or coerced or your relays are otherwise collectively<br>
compromised, MyFamily limits the damage.<br>
<br>
aloha,<br>
Paul<br>
<br>
><br>
> Chris<br>
><br>
> >You and your friend may know each other, but unless you both administer<br>
> >each other's nodes, I don't think you would need to use the MyFamily option.<br>
> ><br>
> > -Rex<br>
> ><br>
> ><br>
> ><br>
> >_______________________________________________<br>
> >tor-relays mailing list<br>
> ><a href="javascript:;" onclick="_e(event, 'cvml', 'tor-relays@lists.torproject.org')">tor-relays@lists.torproject.org</a><br>
> ><a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays" target="_blank">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays</a><br>
> ><br>
> _______________________________________________<br>
> tor-relays mailing list<br>
> <a href="javascript:;" onclick="_e(event, 'cvml', 'tor-relays@lists.torproject.org')">tor-relays@lists.torproject.org</a><br>
> <a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays" target="_blank">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays</a><br>
_______________________________________________<br>
tor-relays mailing list<br>
<a href="javascript:;" onclick="_e(event, 'cvml', 'tor-relays@lists.torproject.org')">tor-relays@lists.torproject.org</a><br>
<a href="https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays" target="_blank">https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays</a><br>
</blockquote><br><br>-- <br>Sent from my iPhone<br>