[tor-talk] Tor bridges over ICMP or DNS

Andreas Krey a.krey at gmx.de
Thu Sep 7 18:48:53 UTC 2017


On Thu, 07 Sep 2017 13:32:35 +0000, Roman Mamedov wrote:
> Hello,
> 
> Has anyone considered making a Tor bridge protocol with ICMP as transport?

Probably.

> Or tunneling over DNS?

Same. Basically, you just need any bridge and a means to tunnel ssh,
and the you can 'ssh -L port:bridgeip:bridgeport', and configure
tor to use the bridge at localhost:port. This will work as long
as not too many people do it.

The problem is that the chinese have enough manpower to
write detectors for any protocol that is widely deployed,
or they simply block IPs that they see widely in use for
either kind of tunnels and suspect tor usage. Means,
anything in common use by the tor browser will get blocked.

The only exception is when the blocking would cause
unacceptable collateral damage as with the meek bridges.

DNS and ICMP particularly stand out.

Andreas

-- 
"Totally trivial. Famous last words."
From: Linus Torvalds <torvalds@*.org>
Date: Fri, 22 Jan 2010 07:29:21 -0800


More information about the tor-talk mailing list