[tor-bugs] #22728 [Core Tor/Tor]: Periodically close long-lived onion service circuits

Tor Bug Tracker & Wiki blackhole at torproject.org
Mon Jun 26 18:33:51 UTC 2017


#22728: Periodically close long-lived onion service circuits
-------------------------------------+---------------------
 Reporter:  mikeperry                |          Owner:
     Type:  defect                   |         Status:  new
 Priority:  Medium                   |      Milestone:
Component:  Core Tor/Tor             |        Version:
 Severity:  Normal                   |     Resolution:
 Keywords:  guard-discovery, tor-hs  |  Actual Points:
Parent ID:                           |         Points:
 Reviewer:                           |        Sponsor:
-------------------------------------+---------------------

Comment (by arma):

 Is there any way to crank that "1 day" number up by a few days?

 I expect people who e.g. ssh into their onion service will have their
 usability impacted by a daily hangup.

 The first attack above is not resolved by hanging up on extra long lived
 circuits, since it just relies on having a bunch of circuits open, and
 "hours" is plenty.

 Whereas the second attack above becomes a big deal because of the weekly
 rotation to a new tls connection, and because of the (monthly-ish, except
 it's more complicated because churn) rotation across guards. If we picked
 1 day (for hangup) because we picked 7 days (for tls rotation), maybe we
 should crank up both?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22728#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list