[tor-project] support the torproject with bridges
teor
teor2345 at gmail.com
Mon Aug 21 04:26:45 UTC 2017
> On 11 Aug 2017, at 07:32, David Fifield <david at bamsoftware.com> wrote:
>
>> I have set up some Fallbacks of my own choise for the bridges. ok ?
>
> You mean fallback directories? I don't know, it sounds okay.
Bridges download their first consensus from a fallback (or authority).
Bridges select directory guards from the live consensus.
Clients use the bridge as their only directory guard.
It might also enable some attacks via the bridge's unique set
of fallbacks:
* if all the fallbacks are down, the bridge will use the directory
authorities (this is ok)
* if all the fallbacks provide outdated consensuses, the bridge might
go down (this is bad)
* if all the fallbacks provide a restricted set of descriptors, then
the other descriptors will be fetched from the bridge's directory
guards (this is ok)
I haven't thought about it much, I think it's ok, but using the
defaults (plus extra fallbacks if you want) could be safer.
T
--
Tim Wilson-Brown (teor)
teor2345 at gmail dot com
PGP C855 6CED 5D90 A0C5 29F6 4D43 450C BA7F 968F 094B
ricochet:ekmygaiu4rzgsk6n
------------------------------------------------------------------------
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: Message signed with OpenPGP
URL: <http://lists.torproject.org/pipermail/tor-project/attachments/20170821/2d198aff/attachment.sig>
More information about the tor-project
mailing list