On 11 Aug 2017, at 07:32, David Fifield david@bamsoftware.com wrote:
I have set up some Fallbacks of my own choise for the bridges. ok ?
You mean fallback directories? I don't know, it sounds okay.
Bridges download their first consensus from a fallback (or authority). Bridges select directory guards from the live consensus. Clients use the bridge as their only directory guard.
It might also enable some attacks via the bridge's unique set of fallbacks: * if all the fallbacks are down, the bridge will use the directory authorities (this is ok) * if all the fallbacks provide outdated consensuses, the bridge might go down (this is bad) * if all the fallbacks provide a restricted set of descriptors, then the other descriptors will be fetched from the bridge's directory guards (this is ok)
I haven't thought about it much, I think it's ok, but using the defaults (plus extra fallbacks if you want) could be safer.
T -- Tim Wilson-Brown (teor)
teor2345 at gmail dot com PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B ricochet:ekmygaiu4rzgsk6n ------------------------------------------------------------------------