undefined | Better HN

0 pointsCoffeeDregs12y ago0 comments

Agreed, but one can hope, yes? For example, if I could probably kill not-interesting traffic if I could traffic-shape the traffic (e.g. you can't run more than 10kB/s averaged over 60 seconds through my node, which is plenty to browse the web securely but isn't enough to download Star Trek 2.) The question remains: are there ways to manage (not prevent) this issue?

0 comments

dfc12y ago

No, I don't hope. If relay operators can "peel back the layers of my onions" and see the traffic the entire security model is out the window.

Edit: I just saw your restatement of your question. Check out the bandwidth management features and set your relay to only allow exit traffic to port 443. More info on the bandwidth management can be found here:

https://trac.torproject.org/projects/tor/wiki/doc/TorFAQ#Wha...

gizmo68612y ago

The security model of Tor allows the exit nodes to see all the traffic in 'plaintext' (indeed, the design of Tor requires it). What the security model requires is that the exit nodes not be able to identify who sent the packets originally.

I put "plaintext" in quotes because they can only see what you want to send to the server, which could be encrypted outside of the context of Tor.

Although I think it is illegal to spy on the data you pass as an exit node, a point that is often not said is that by the design of Tor, you are showing some random person the content of all of your requests, which opens up a whole new attack vector for eavesdropping and man-in-the-middle attacks.

CoffeeDregsOP12y ago

Thank you. Your suggestion is very helpful. I'll have a gander at that link.

j / k navigate · click thread line to collapse