I agree with you and I am /not/ trying to set up an authoritative directory server. I wanted to know how to setup a directory server just to see how it all fits in. Thanks for the quick replies all.<br><br><div><span class="gmail_quote">
On 5/15/07, <b class="gmail_sendername">Karsten Loesing</b> <<a href="mailto:karsten.loesing@gmx.net">karsten.loesing@gmx.net</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
-----BEGIN PGP SIGNED MESSAGE-----<br>Hash: SHA1<br><br>> From what I understand, you can start your own dir server if you email<br>> the other dir servers and ask them to trust you. Unless you show<br>> drastically different results there's no reason for them not to.
<br><br>Nope, no way! You can run a directory *mirror* by storing and forwarding<br>the directory information of authoritative directories to clients. But<br>you cannot simply run your own authoritative directory server and write
<br>an email to the Tor ops so that they trust you and add you to the list<br>of authoritative directories. The anonymity of Tor relies to a certain<br>extent on the trustworthiness of the directories. If you (and your<br>
friends) could control a majority of the directories and convince<br>clients to use your own, potentially modified directory information, you<br>could pass different router lists to different clients and defeat their<br>anonymity by observing which routers they pick.
<br><br>- --Karsten<br>-----BEGIN PGP SIGNATURE-----<br>Version: GnuPG v1.4.6 (GNU/Linux)<br>Comment: Using GnuPG with Mozilla - <a href="http://enigmail.mozdev.org">http://enigmail.mozdev.org</a><br><br>iD8DBQFGSihP0M+WPffBEmURAkqIAJ9mK3aOgt7EM2ryG8RN9XBnkXRVqQCfarxf
<br>jViK/eCFTQ4KbSix3f2iGmk=<br>=HCy0<br>-----END PGP SIGNATURE-----<br></blockquote></div><br>