[tor-relays] exit policy to reflect country-wide ban
Sebastian Hahn
sebastian at torproject.org
Fri Dec 5 03:30:48 UTC 2014
Hi Pascal,
On 05 Dec 2014, at 04:26, Pascal <Pascal666 at Users.SourceForge.Net> wrote:
> On 12/4/2014 3:50 PM, Sebastian Hahn wrote:
>> No, that's a local choice by the relay and it will prevent exiting to
>> IPs that it disallows in its config.
>
> Yes, but does it have a way of telling clients that so they will use a different exit for those IPs? Vladimir's original question was about not marking Russian nodes as bad exits just because they can't get to certain IPs.
This influences path selection on the client without too good a reason,
it also increases complexity on the dirauths even more. It would also
mean yet larger consensuses to make these results public. Not a good
plan.
> I found the bug I was thinking of: https://trac.torproject.org/projects/tor/ticket/1774
>
> It's old, but still open. I don't know if the microdescriptor format has been extended since then, but nickm states rather plainly that microdescriptors do not support excluding specific IPs.
This is a misunderstanding. It just means that clients don't know
that a relay doesn't allow exiting to an individual IP address. The
relay in question will still disallow the request to exit there.
Cheers
Sebastian
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20141205/4d5026a0/attachment-0001.sig>
More information about the tor-relays
mailing list