[tor-relays] Running 5000 relays...

Tim Wilson-Brown - teor teor2345 at gmail.com
Mon Mar 21 16:52:53 UTC 2016 

> On 21 Mar 2016, at 21:32, tor-server-creator at use.startmail.com wrote:
> 
> By setting "DirPort: 0" the relays wont get flaged as Dir. So: Should be set to 0 in this case, no?

In 0.2.8, every relay is potentially a hidden service directory and a directory mirror.
Clients tunnel directory connections through the ORPort.
So the only thing that changes when you set the DirPort to 0 is that the port isn't opened.

The details are:

Hidden Service Directories (HSDir) and Directory Mirrors (V2Dir) are independent functions, with different consensus flags.

HSDir:

Since 0.2.7, all relays, (even if the have no DirPort) advertise in their descriptor that they are willing to be a hidden service directory. Then the authorities impose minimum uptime and bandwidth requirements for the HSDir flag. Then clients use this flag to decide whether to ask for hidden service descriptors from the relay.

Directory Mirrors:

In 0.2.8, almost all relays, (even if the have no DirPort) advertise in their descriptor that they are willing to accept directory connections tunnelled over their ORPort. Then 0.2.8 clients use this part of the descriptor to decide whether to make tunnelled directory connections to relays, even if they don't have the V2Dir flag.

In all current releases, relays with a DirPort advertise they support the version 2 directory protocol, and then the authorities impose requirements and assign the V2Dir flag. Then clients use this flag to decide whether to make tunnelled directory connections to relays.

Direct DirPort Use:

Some obscure client configurations and firewalled clients may use the DirPort directly. We're looking to fix that so all client connections (and bridge connections, for consistency) are tunnelled.

Relays use the DirPort directly, but they typically use the authorities for directory documents. (Some obscure relay configurations will use the fallback directory mirrors.)

Tim

> 
> 
> 
> Am Sonntag, 20. März 2016 02:54 schrieb Tim Wilson-Brown - teor <teor2345 at gmail.com>:
> 
>> 
>>> On 9 Mar 2016, at 09:29, nusenu <nusenu at openmailbox.org <mailto:nusenu at openmailbox.org>> wrote:
>>> 
>>> - maybe run without DirPort so you do not become HSDir for to many HSes
>> 
>> Hmm, I don't think that this will work as you expect.
>> As of 0.2.7, every relay advertises that it will be a hidden service directory (regardless of whether it has a DirPort or not).
>> This used be controlled by the HidServDirV2 option, but that's now obsolete.
>> 
>> See ticket 16543 and commit 2f8cf524b.
>> 
>> Tim
>> 
>> Tim Wilson-Brown (teor)
>> 
>> teor2345 at gmail dot com
>> PGP 968F094B
>> 
>> teor at blah dot im
>> OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F
> _______________________________________________
> tor-relays mailing list
> tor-relays at lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays

Tim Wilson-Brown (teor)

teor2345 at gmail dot com
PGP 968F094B

teor at blah dot im
OTR CAD08081 9755866D 89E2A06F E3558B7F B5A9D14F

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20160322/335588c3/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 842 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20160322/335588c3/attachment.sig>

More information about the tor-relays mailing list