[tor-dev] How about capping single operators to max. 10% exit capacity of the network?

teor teor2345 at gmail.com
Sun Dec 10 22:37:42 UTC 2017

On 11 Dec 2017, at 09:25, nusenu <nusenu-lists at riseup.net> wrote:

>> And I think we should focus our efforts on expanding the pool of exits,
>> and improving bandwidth measurement, rather than limiting operators
>> who are helping the network. (New automatic limits will likely be seen
>> as a rejection of someone's contribution, so they should be handled very
>> carefully.)
> I see your point.
> Also note that there are operators that would actually appreciate such a
> limit because they do not want to run more than X% (see tor-relays@).

Automatic limits are also a denial of service risk for the entire network.

If we implement them poorly, they could cause a cascade effect that
pushes clients onto overloaded relays until they go down.

For that reason alone, I'm not convinced this is a good idea.

(I think we need a better design that separates load-balancing and
security parameters. This is an area that needs further research.)


More information about the tor-dev mailing list