[tor-bugs] #23278 [Core Tor/Tor]: Give user option to use non-Exit Guards only
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Aug 25 16:24:32 UTC 2017
#23278: Give user option to use non-Exit Guards only
------------------------------------+----------------------------------
Reporter: cypherpunks | Owner: (none)
Type: enhancement | Status: reopened
Priority: Medium | Milestone: Tor: unspecified
Component: Core Tor/Tor | Version:
Severity: Normal | Resolution:
Keywords: tor-client, tor-config | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
------------------------------------+----------------------------------
Comment (by cypherpunks):
> And that paranoid mode would be all about avoiding that behavior in case
of a bad bug (maybe like #23318) in tor even though tor should never do
that.
Tor client can to pick Guard with "accept *:443; reject *:*" exit policy,
which is not enough for relay to get Exit flag but enough to use it as
exit relay. Actually there are many real non-Exit (flag) Guards with more
complex exit policies that can be used as exits too (there many protocols
nasty people can do nasty things).
Why Paranoid mode -- many such Guards have a "history" as they already
listed in some "block lists" or will be listed in cops lists in future.
This option for paranoid people who might need more than default settings
but is not ready to use Bridges yet. (Some dictatorship or hybrid regimes
using some kind of collective punishment)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/23278#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list