[tor-talk] Cloak Tor Router

Moritz Bartl moritz at torservers.net
Sun Nov 2 12:25:18 UTC 2014 

Hi!

My biggest worries are unattended upgrades, that they have to rely on
someone (you?) to provide up-to-date packages and hardware support for
the complete life-cycle. 64MB RAM may be enough for a Tor client,
although I'm a bit skeptical whether it can scale to more than a few
concurrent users. It is definitely not enough for a Tor bridge or
non-exit relay.

I am also not a fan of transparent proxying, but you are aware of the
issues there. I think it's irresponsible to throw people at the changed
threat model of Tor without telling them. I'd rather want to see a
captive portal that let's you download Tor and browse the Tor website,
and then lets Tor clients out. You say people are too stupid to run Tor
Browser. I think if you give them a nice tutorial on a captive portal,
they will manage. With the added benefit of educating these people so
they can also use Tor at different non-torified locations in the future.
It is not trivial to only allow Tor out (with all the pluggable
transports and things), but it can be done.

I do want a "Tor box" that has both this type of guest network with
captive portal, as well as enough power to be both a bridge or a relay.
It then needs some nice web user interface (with Tor stats!), a
mechanism to determine its own preferred state when not configured
otherwise (bridge/relay/client-only), and some fancy LEDs or display to
show how much you're helping the network. Yours cannot be that, so I'm
not really interested.

I also don't understand why everyone thinks they have to build their own
hardware. There are quite a number of open hardware platforms nowadays
that can be used for such a project just fine. Then you relieve yourself
of having to support that piece of hardware forever, manage production
and shipping and all that crap, but instead can focus on the important
parts, which is to make the software flexible enough to be moved from
one hardware platform to another, make nice interfaces, and work with
torproject.org to provide updates. The web GUI has been a proposed GSOC
project for quite some time, but no student picked it up yet. Does your
board even have LEDs?

You talk about adding exit relays, which is a nice thing to think about,
but as noted previously, if you don't talk about bandwidth and location,
that doesn't mean a thing.

I am not a hardware expert, but I have followed quite a number of
hardware-related kickstarters over time, and your timeline sounds really
ambitious.

-- 
Moritz Bartl
https://www.torservers.net/

More information about the tor-talk mailing list