[tor-talk] transparent tor routers
Aeris
aeris+tor at imirhil.fr
Mon Jan 18 15:03:25 UTC 2016
> Hardware offering Tor routing is becoming very cheap and I think it's
> time to reexamine what we can do with it.
>
> If you want to play, here is some hardware I recently bought that can
> run Tor firmware:
>
> http://www.amazon.com/GL-AR150-router-150Mbps-OpenWrt-Pre-installed/dp/B015C
> YDVG8/
Not so simple.
As explain in private, you *need* to avoid Tor inside Tor.
So you need some smart firewall, based on ipset generated from the consensus,
to route Tor connection directly and proxify everything else, or multiple
access point and ESSID to discriminate usage.
And in this case, cheap routers with OpenWRT have nor enough memory nor CPU to
manage properly those corner cases.
For example, Tor ipset loading already takes few minutes on a Olimex A20 Lime
(512MB DDR3 + dual core 1GHz), I can’t imagine decent/usable perf on a AR150
(64MB DDR + 400MHz).
You also need some basic Tor configuration web UI (bridge, firewalled port…)
adapted for not-savy users.
No enough place on tiny router…
--
Aeris
Individual crypto-terrorist group self-radicalized on the digital Internet
https://imirhil.fr/
Protect your privacy, encrypt your communications
GPG : EFB74277 ECE4E222
OTR : 5769616D 2D3DAC72
https://café-vie-privée.fr/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20160118/c3927c68/attachment.sig>
More information about the tor-talk
mailing list