[tor-relays] Simplifying ExoneraTor
Zack Weinberg
zackw at cmu.edu
Tue Jul 7 21:12:59 UTC 2015
On Tue, Jul 7, 2015 at 4:50 PM, Geoff Down <geoffdown at fastmail.net> wrote:
> On Tue, Jul 7, 2015, at 07:47 PM, Zack Weinberg wrote:
>
>> The thing is, putting myself in the shoes of someone trying to
>> investigate an incident, I think the distinction among "this relay has
>> _never_ allowed any sort of exiting", "this relay _does_ allow exiting
>> right now", and "this relay _did_ allow exiting at some point in the
>> past but doesn't right now" is critical. More important than whatever
>> its current policy is wrt any given port or IP address. Re-importing
>> the entire descriptor archive therefore strikes me as "yeah, if that's
>> what it takes, you should do that."
>
> If someone only has an IP address for an incident but no exact time,
> they barely have the basis for a complaint, let alone something more
> formal like a prosecution.
> What is the relevance of the relay's status at any time other than that
> of the incident?
That's just the point I'm trying to make. If the relay's status at
the (past) time of the incident was different from the relay's status
at the (present) time of the investigation, that should be immediately
obvious when you look at its page; it should not be a thing buried in
a details screen.
zw
More information about the tor-relays
mailing list