Issue about selection of Tor relays when using the default torrc configuration

Sambuddho Chakravarty sc2516 at columbia.edu
Mon Jun 1 21:38:43 UTC 2009 

Hello all
 I am running tor-0.2.1.15-rc ; source downloaded from the tor website 
.  For my purpose I am tapping into the function 
circuituse.c:circuit_has_opened()  to determine which relays are being 
used in a stream (assuming only one stream is using Tor). However the IP 
address of the relays I see here don't match the list of relays for the 
stream when I determine them using
'get_info stream-status'. Which one should I rely upon to determine 
which circuit is being used ? Common sense tells me to rely on 'get_info 
stream_status'. However , I see the client crash at times when I connect 
to the control port .

Thanks
Sambuddho

> On Sun, May 31, 2009 at 02:59:01AM -0400, Sambuddho Chakravarty wrote:
>   
>> Thanks for you help. However , is there no way that I can cause tor 
>> client to reload a new set of entry guard nodes  ?  I have tried both 
>> NEWNYM and HUP signals through *nc* to communicate to tor controller . 
>> However , in both cases only a small set of (infact 3) entry guards are 
>> selected.
>>     
>
> Yes, that's a feature. Otherwise you'll open yourself up to a variety
> of attacks:
> https://wiki.torproject.org/noreply/TheOnionRouter/TorFAQ#EntryGuards
>
> If you want to turn off that defense, set "UseEntryGuards 0" in your
> torrc.
>
> Or you can delete them from your $datadir/state file while Tor is off,
> but that's probably more likely to cause problems.
>
>   
>> Also , in continuation to my previous email , where can I download the
>> torctl python libraries from ?
>>     
>
> You can get it from SVN:
> https://svn.torproject.org/svn/torctl/trunk/python/
>
>   
>> Do I need the library or I can just make
>> do by sending text command to the tor controller to play around and test
>> with ?
>>     
>
> Playing around and testing with telnet or nc is a fine start. You only
> need the torctl library if you find that playing around by hand is
> insufficient for your needs.
>
> --Roger
>
>
>

More information about the tor-talk mailing list