Reliability of circuit extension if target server is running a Tor exit node
Roger Dingledine
arma at mit.edu
Thu Jul 13 04:54:27 UTC 2006
On Thu, Jul 13, 2006 at 12:35:24AM -0400, phobos at rootme.org wrote:
> : at port 443, but people browse the website on the same IP at port 80
> : using Tor, will their circuit exit from this Tor server?
>
> No. The exit policy is honored. If example.com is a tor exit
> server, but it doesn't allow port 80 to exit, you will not
> extend a circuit through tor to get to example.com:80.
> The traffic will go through another exit server that allows port 80.
But remember that Tor servers have exit policies, so there's more to it
than saying "you're an exit node" or "you're not an exit node". For
example, some Tor servers might have an exit policy that rejects
everything but connections to their own IP address. Then they can be
used in the way you describe (as a private enclave server, essentially),
but they won't connect to arbitrary destinations.
--Roger
More information about the tor-talk
mailing list