Home Explore Help
Sign In
piros
/
tor
3
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 66d7448258
Branches Tags
tor
/
doc
/
FAQ

FAQ 4.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123 
  1. The Onion Routing (TOR) Frequently Asked Questions
    2. 

  2. --------------------------------------------------
    3. 

  3. 

  4. 1. General.
    5. 

  5. 

  6. 1.1. What is tor?
    7. 

  7. 

  8. Tor is an implementation of version 2 of Onion Routing.
    9. 

  9. 

  10. Onion Routing is a connection-oriented anonymizing communication
    11. 

  11. service. Users build a layered block of asymmetric encryptions
    12. 

  12. (an "onion") which describes a source-routed path through a set of
    13. 

  13. nodes. Those nodes build a "virtual circuit" through the network, in which
    14. 

  14. each node knows its predecessor and successor, but no others. Traffic
    15. 

  15. flowing down the circuit is unwrapped by a symmetric key at each node,
    16. 

  16. which reveals the downstream node.
    17. 

  17. 

  18. Basically tor provides a distributed network of servers ("onion
    19. 

  19. routers"). Users bounce their tcp streams (web traffic, ftp, ssh, etc)
    20. 

  20. around the routers, and recipients, observers, and even the routers
    21. 

  21. themselves have difficulty tracking the source of the stream.
    22. 

  22. 

  23. 1.2. Why's it called tor?
    24. 

  24. 

  25. Because tor is the onion routing system. I kept telling people I was
    26. 

  26. working on onion routing, and they said "Neat. Which one?" Even if onion
    27. 

  27. routing has become a standard household term, this is the actual onion
    28. 

  28. routing project, started out of the Naval Research Lab.
    29. 

  29. 

  30. (Theories about recursive acronyms are ok too.)
    31. 

  31. 

  32. 1.3 Is there a backdoor in tor?
    33. 

  33. 

  34. Not right now, but if this answer changes we probably won't be allowed
    35. 

  35. to tell you. You should always check the source (or at least the diffs
    36. 

  36. since the last release) for suspicious things; and if we don't give you
    37. 

  37. source, that's a sure sign something funny could be going on.
    38. 

  38. 

  39. 2. Compiling and installing.
    40. 

  40. 

  41. [Read the README file for now; check back here once we've got packages/etc
    42. 

  42. for you.]
    43. 

  43. 

  44. 

  45. 3. Running tor.
    46. 

  46. 

  47. 3.1. What kind of server should I run?
    48. 

  48. 

  49. The same executable ("or") functions as both client and server, depending
    50. 

  50. on which ports are specified in the configuration file. You can specify:
    51. 

  51. * APPort: client applications (eg privoxy, Mozilla) can speak socks to
    52. 

  52.   this port.
    53. 

  53. * OPPort: onion proxies (client onion routers) connect to this port.
    54. 

  54. * ORPort: other onion routers connect to this port
    55. 

  55. * DirPort: onion proxies and onion routers speak http to this port, to
    56. 

  56.   pull down a directory of which nodes are currently available.
    57. 

  57. 

  58. 3.2. So I can just run a full onion router and join the network?
    59. 

  59. 

  60. No. Users should run just an onion proxy (use the 'oprc' config file).
    61. 

  61. If you start up a full onion router, the rest of the routers in the
    62. 

  62. system won't recognize you, so they will reject your handshake attempts.
    63. 

  63. 

  64. 3.3. How do I join the network then?
    65. 

  65. 

  66. If you just want to use the onion routing network, you can run a proxy
    67. 

  67. and you're all set. If you want to run a router, you must convince
    68. 

  68. the directory server operators (currently arma@mit.edu) that you're a
    69. 

  69. trustworthy person. From there, the operators add you to the directory,
    70. 

  70. which propagates out to the rest of the network. All nodes will know
    71. 

  71. about you within an hour.
    72. 

  72. 

  73. 3.4. I want to run a directory server too.
    74. 

  74. 

  75. If you run a very reliable node, you plan to be around for a long time,
    76. 

  76. and you want to spend some time ensuring that router operators are
    77. 

  77. people we know and like, we may want you to run a directory server
    78. 

  78. too. We must manually add you to the 'dirservers' file that's part of
    79. 

  79. the distribution; users will only know about you when they upgrade to
    80. 

  80. a new version. Of course, you can always just start up your router as a
    81. 

  81. directory server too --- but users won't know to ask you for directories,
    82. 

  82. and more importantly, you'll never learn from the real directory servers
    83. 

  83. about recently joined routers.
    84. 

  84. 

  85. 

  86. 4. Development.
    87. 

  87. 

  88. 4.1. Who's doing this?
    89. 

  89. 

  90. 4.2. Can I help?
    91. 

  91. 

  92. 4.3. I've got a bug.
    93. 

  93. 

  94. 

  95. 5. Anonymity.
    96. 

  96. 

  97. 5.1. So I'm totally anonymous if I use tor?
    98. 

  98. 

  99. 

  100. 

  101. 5.2. Where can I learn more about anonymity?
    102. 

  102. 

  103. 5.3. What attacks remain against onion routing?
    104. 

  104. 

  105. tagging: can change bytes in the cells, even through link encryption
    106. 

  106. end node can give back wrong data, even subtly wrong data.
    107. 

  107. 

  108. 

  109. 6. Comparison to related projects.
    110. 

  110. 

  111. 6.1. Onion Routing.
    112. 

  112. 

  113. Tor *is* onion routing.
    114. 

  114. 

  115. 6.2. Freedom.
    116. 

  116. 

  117. 

  118. 7. Protocol and application support.
    119. 

  119. 

  120. 7.1. http? ftp? udp? socks? mozilla?
    121. 

  121. 

  122. 

  123.