[tor-dev] Internet-wide scanning for bridges

Philipp Winter phw at nymity.ch
Sun Dec 14 18:34:56 UTC 2014

On Fri, Dec 12, 2014 at 04:33:05PM -0800, Vlad Tsyrklevich wrote:
> I've attached a patch to warn bridge operators running with ORPort set to
> 443 or 9001 as a stop-gap measure.

You are raising good points here but keep in mind that we also want at
least *some* (vanilla) bridges which run on port 443.  There are some
adversaries such as captive portals which only allow communication over
a small set of ports and 443 is one of these ports.  While these bridges
would easily fall prey to Internet-wide scanning, they would still be
useful for users behind captive portals.


More information about the tor-dev mailing list