On Wed, Apr 27, 2011 at 8:36 AM, Gabriel Weinberg <span dir="ltr"><<a href="mailto:yegg@alum.mit.edu">yegg@alum.mit.edu</a>></span> wrote:<br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Good point. Our root A record has moved around recently for scalability and then the Amazon outage.<div><br></div><div>The enclave is running at 72.94.249.36, the same place the hidden service (<a href="http://3g2upl4pq6kufc4m.onion/" target="_blank">http://3g2upl4pq6kufc4m.onion/</a>) should be pointing to. <a href="http://tor.duckduckgo.com" target="_blank">tor.duckduckgo.com</a> also points there.</div>
<div><br></div><div>Is there a way to redirect people who enter the root domain to be routed to the enclave IP?<br></div></blockquote><div><br>I doubt it, it's outside the Tor network, so it would have to travel through an exit node to reach it. Configuring your Tor node running on <a href="http://tor.duckduckgo.com">tor.duckduckgo.com</a> may allow people to exit through that node, but I don't know if it would then become the main route through the Tor network.<br>
<br>Perhaps someone here could clarify?<br><br>-Zach<br></div><blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;"><div><div><br clear="all">Gabriel, <a href="http://ye.gg/" target="_blank">http://ye.gg/</a><div>
<div></div><div class="h5"><br>
<br><br><div class="gmail_quote">On Tue, Apr 26, 2011 at 11:34 PM, Zac Lym <span dir="ltr"><<a href="mailto:zaclym@indolering.com" target="_blank">zaclym@indolering.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
On Tue, Apr 26, 2011 at 09:58:51AM -0700, Zach Lym wrote:<br>
> I am doing page load tests on an exit enclave (<a href="http://duckduckgo.com" target="_blank">duckduckgo.com</a>) over a period<br>
> of a few weeks. I am worried that I will exit at other nodes and reach the<br>
> public duckduckgo site.<br>
<br>
% host <a href="http://duckduckgo.com" target="_blank">duckduckgo.com</a><br>
<a href="http://duckduckgo.com" target="_blank">duckduckgo.com</a> has address <a href="tel:50.17.207.245" value="+15017207245" target="_blank">50.17.207.245</a><br>
<br>
% grep <a href="tel:50.17.207.245" value="+15017207245" target="_blank">50.17.207.245</a> cached-*<br>
%<br></blockquote><div> </div><div>Odd, I will CC the CEO. <br><br></div><blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204, 204, 204);padding-left:1ex">
<br>
I think there is no Tor relay running at that IP address currently,<br>
so this exit enclave you're hoping for cannot happen. An exit enclave<br>
is a Tor exit relay that runs on the same IP address as a destination<br>
(e.g. a website).<br>
<br>
> The documentation is somewhat ambiguous on this point: If a service provides<br>
> an enclave node, the standard Tor out-proxy's are *not* used, correct?<br>
<br>
Perhaps you mean a Tor hidden service, not an exit enclave?<br></blockquote><div><br>No, I mean a properly configured exit enclave which (as I understand it) is reachable when using Tor without using out-proxies. Out-proxies are the real choke-point of the Tor network...<br>
<br></div><blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204, 204, 204);padding-left:1ex">
<br>
In which case, yes, if you visit a .onion address, that won't involve<br>
Tor exit relays. You instead do a rendezvous inside the Tor network:<br>
<a href="https://www.torproject.org/docs/hidden-services" target="_blank">https://www.torproject.org/docs/hidden-services</a><br></blockquote><blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204, 204, 204);padding-left:1ex">
<br>
> Thank you,<br>
> > P.S. Would using paid proxy's which exit in other continents improve<br>
> external validity?<br></blockquote><blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204, 204, 204);padding-left:1ex">
<br>
What does 'external validity' mean?<br></blockquote><div>Similarity to the real world and/or applicability outside of the testing
environment. So, would someone in China or Europe get differen
circuits, is using the same IP and Tor node over and over going to
create caches, etc. <br><br></div><blockquote class="gmail_quote" style="margin:0pt 0pt 0pt 0.8ex;border-left:1px solid rgb(204, 204, 204);padding-left:1ex">
<br>
--Roger<br><br></blockquote></div>
</blockquote></div><br></div></div></div></div>
</blockquote></div><br>