[tor-bugs] #14382 [Tor Messenger]: enable Stream Isolation
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Mar 13 08:23:14 UTC 2016
#14382: enable Stream Isolation
---------------------------+---------------------
Reporter: proper | Owner:
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Tor Messenger | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
---------------------------+---------------------
Comment (by cypherpunks):
Replying to [comment:2 yawning]:
> Per IRC:
> {{{
> 06:22:04 armadev | sukhe: huh! hm. what are the arguments for and
against?
> 06:22:23 armadev | i guess 'for' includes 'you shouldn't mix your
protocols
> | onto the same circuit, and besides tor messenger
doesn't
> | produce that many streams anyway'?
> 06:22:42 armadev | and 'against' includes 'what if somebody runs
tor
> | messenger to have a generic socksport, and then
they
> | hook their other app up to it?'
> }}}
If you reuse the TBB circuit isolation and simply set the socks
authentication, there is no issue.
E.g.: socksusername=messenger://<<<ACCOUNT_ID>>>
Even better for potential multi-user setups sharing the same Tor would be
to include (a hash of) PID / local IP address in the socks authentication.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/14382#comment:8>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list