[or-cvs] blacklists, middleman nodes, pressure to shut down
Roger Dingledine
arma at seul.org
Wed Feb 9 05:06:58 UTC 2005
Update of /home2/or/cvsroot/tor/doc/design-paper
In directory moria.mit.edu:/home2/arma/work/onion/cvs/tor/doc/design-paper
Modified Files:
challenges.tex
Log Message:
blacklists, middleman nodes, pressure to shut down
Index: challenges.tex
===================================================================
RCS file: /home2/or/cvsroot/tor/doc/design-paper/challenges.tex,v
retrieving revision 1.61
retrieving revision 1.62
diff -u -d -r1.61 -r1.62
--- challenges.tex 9 Feb 2005 04:34:50 -0000 1.61
+++ challenges.tex 9 Feb 2005 05:06:56 -0000 1.62
@@ -730,21 +730,17 @@
and Wikipedia: we don't want to compete for (or divvy up) the
NAT-protected entities of the world.
-Worse, many IP blacklists are coarse-grained. Some
-ignore Tor's exit policies, preferring to punish
+Worse, many IP blacklists are coarse-grained: they ignore Tor's exit
+policies, partly because it's easier to implement and partly
+so they can punish
all Tor nodes. One IP blacklist even bans
every class C network that contains a Tor node, and recommends banning SMTP
from these networks even though Tor does not allow SMTP at all. This
-coarse-grained approach is typically a strategic decision to discourage the
+strategic decision aims to discourage the
operation of anything resembling an open proxy by encouraging its neighbors
-to shut it down in order to get unblocked themselves.
-%[****Since this is stupid and we oppose it, shouldn't we name names here -pfs]
-%[XXX also, they're making \emph{middleman nodes leave} because they're caught
-% up in the standoff!]
-%[XXX Mention: it's not dumb, it's strategic!]
-%[XXX Mention: for some servops, any blacklist is a blacklist too many,
-% because it is risky. (Guy lives in apt _building_ with one IP.)]
-%XXX roger should add more
+to shut it down in order to get unblocked themselves. This pressure even
+affects Tor nodes running in middleman mode (disallowing all exits) when
+those nodes are blacklisted too.
Problems of abuse occur mainly with services such as IRC networks and
Wikipedia, which rely on IP blocking to ban abusive users. While at first
More information about the tor-commits
mailing list