[tor-bugs] #17057 [Tor]: add reverse proxy to bridges
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Sep 14 02:28:17 UTC 2015
#17057: add reverse proxy to bridges
-------------------------+---------------------
Reporter: elypter | Owner:
Type: enhancement | Status: new
Priority: major | Milestone:
Component: Tor | Version:
Keywords: | Actual Points:
Parent ID: | Points:
-------------------------+---------------------
pluggable transports mimic normal traffic like http.
an adversary who is scanning all http traffic in his country could make a
list of all the http servers that produce legit amounts of traffic. he
then scans all the servers and exclude those which provide legit services.
the only servers left now are bridges and a few hidden or password
protected services.
he then can block the connection and wait if the client connects to a
similar service. if he does the adversary can repeat and collect more
bridges until the user gives up.
this could be prevented if the bridge provided an actual service. but this
cannot be something like a generic website because it could easily be
identified. if the bridge provided a reverse proxy instead then a real web
service could be connected. it would look like normal load balancing or
normal hosting if the site was only available under the bridge ip.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17057>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list