[tor-bugs] #14917 [Tor]: Client's choice of rend point can leak info about hidden service's guard relay
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon May 11 14:03:15 UTC 2015
#14917: Client's choice of rend point can leak info about hidden service's guard
relay
-------------------------+-------------------------------------------------
Reporter: arma | Owner:
Type: defect | Status: assigned
Priority: normal | Milestone: Tor: 0.2.7.x-final
Component: Tor | Version: Tor: 0.2.7
Resolution: | Keywords: SponsorR, tor-hs, 027-triaged-1-in,
Actual Points: | SponsorU
Points: medium | Parent ID:
-------------------------+-------------------------------------------------
Comment (by dgoulet):
Replying to [comment:9 arma]:
> Trigger a warning and fail the circuit? Or trigger a warning and do the
four hop circuit as described above? I assume you mean the former. But
isn't having only one EntryNode the safest, best recommendation we can
have for when you're setting EntryNodes? Especially in the scenario where
you run that relay or know its operator.
No, it would be trigger a warning and don't fail. But now that I think of
this that doesn't make much sense because between failing voluntarily or
failing because we can't connect to the guard as the chosen exit is
roughly the same... So this solution doesn't work.
>
> I worry that we're warning people away from what might actually be the
best recommended behavior for some of them.
If you are an HS and you set only one single `EntryNodes`, it's obvisouly
not the recommended behavior for now.
We use one guard right now (primary) but we always have a secondary in
case we have an unstable primary (and also to avoid this issue). With
`EntryNodes`, this "secondary" guard is bypassed leading to that issue.
IMO, HS + one `EntryNodes`, you shouldn't be able to start tor at all,
period. It's either that or we allow exiting at your guard which I don't
think is ideal.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/14917#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list