[tor-dev] Internet-wide scanning for bridges
phw at nymity.ch
Sun Dec 14 18:34:56 UTC 2014
On Fri, Dec 12, 2014 at 04:33:05PM -0800, Vlad Tsyrklevich wrote:
> I've attached a patch to warn bridge operators running with ORPort set to
> 443 or 9001 as a stop-gap measure.
You are raising good points here but keep in mind that we also want at
least *some* (vanilla) bridges which run on port 443. There are some
adversaries such as captive portals which only allow communication over
a small set of ports and 443 is one of these ports. While these bridges
would easily fall prey to Internet-wide scanning, they would still be
useful for users behind captive portals.
More information about the tor-dev