[tor-dev] Will people running a relay be blocked from accessing CN destinations?

Ian Goldberg iang at cs.uwaterloo.ca
Sat Jun 11 17:58:45 UTC 2011

On Sat, Jun 11, 2011 at 07:21:53PM +0200, tagnaq wrote:
> On 06/11/2011 06:59 PM, tagnaq wrote:
> >> Hmm.  I wonder what happens if the packets are fragmented so that the
> >> TCP port information isn't in the first fragment...
> An IP packet must be very small to fulfil this scenario (first IP
> fragment is so small that it is not able enclose the entire TCP header).
> IP hosts are required to be able to handle at least 576 bytes.

Yes, but the client (say, inside China) is perfectly capable of
artificially fragmenting its SYN packet.  It shouldn't be too hard to
check what actually happens in this case?  (At least, for the current
GFW configuration.)

   - Ian

More information about the tor-dev mailing list