Home Explore Help
Sign In
sengler
/
tor-parallel-relay-conn
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 2579d827ab
Branches Tags
tor-parallel...
/
doc
/
spec
/
proposals
/
170-user-path-config.txt

170-user-path-config.txt 4.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. Title: Configuration options regarding circuit building
    2. 

  2. Filename: 170-user-path-config.txt
    3. 

  3. Author: Sebastian Hahn
    4. 

  4. Created: 01-March-2010
    5. 

  5. Status: Draft
    6. 

  6. 

  7. Overview:
    8. 

  8. 

  9.     This document outlines how Tor handles the user configuration
    10. 

  10.     options to influence the circuit building process.
    11. 

  11. 

  12. Motivation:
    13. 

  13. 

  14.     Tor's treatment of the configuration *Nodes options was surprising
    15. 

  15.     to many users, and quite a few conspiracy theories have crept up. We
    16. 

  16.     should update our specification and code to better describe and
    17. 

  17.     communicate what is going during circuit building, and how we're
    18. 

  18.     honoring configuration. So far, we've been tracking a bugreport
    19. 

  19.     about this behaviour (
    20. 

  20.     https://bugs.torproject.org/flyspray/index.php?do=details&id=1090 )
    21. 

  21.     and Nick replied in a thread on or-talk (
    22. 

  22.     http://archives.seul.org/or/talk/Feb-2010/msg00117.html ).
    23. 

  23. 

  24.     This proposal tries to document our intention for those configuration
    25. 

  25.     options.
    26. 

  26. 

  27. Design:
    28. 

  28. 

  29.     Five configuration options are available to users to influence Tor's
    30. 

  30.     circuit building. EntryNodes and ExitNodes define a list of nodes
    31. 

  31.     that are for the Entry/Exit position in all circuits. ExcludeNodes
    32. 

  32.     is a list of nodes that are used for no circuit, and
    33. 

  33.     ExcludeExitNodes is a list of nodes that aren't used as the last
    34. 

  34.     hop. StrictNodes defines Tor's behaviour in case of a conflict, for
    35. 

  35.     example when a node that is excluded is the only available
    36. 

  36.     introduction point. Setting StrictNodes to 1 breaks Tor's
    37. 

  37.     functionality in that case, and it will refuse to build such a
    38. 

  38.     circuit.
    39. 

  39. 

  40.     Neither Nick's email nor bug 1090 have clear suggestions how we
    41. 

  41.     should behave in each case, so I tried to come up with something
    42. 

  42.     that made sense to me.
    43. 

  43. 

  44. Security implications:
    45. 

  45. 

  46.     Deviating from normal circuit building can break one's anonymity, so
    47. 

  47.     the documentation of the above option should contain a warning to
    48. 

  48.     make users aware of the pitfalls.
    49. 

  49. 

  50. Specification:
    51. 

  51. 

  52.     It is proposed that the "User configuration" part of path-spec
    53. 

  53.     (section 2.2.2) be replaced with this:
    54. 

  54. 

  55.     Users can alter the default behavior for path selection with
    56. 

  56.     configuration options. In case of conflicts (excluding and requiring
    57. 

  57.     the same node) the "StrictNodes" option is used to determine
    58. 

  58.     behaviour. If a nodes is both excluded and required via a
    59. 

  59.     configuration option, the exclusion takes preference.
    60. 

  60. 

  61.     - If "ExitNodes" is provided, then every request requires an exit
    62. 

  62.       node on the ExitNodes list. If a request is supported by no nodes
    63. 

  63.       on that list, and "StrictNodes" is false, then Tor treats that
    64. 

  64.       request as if ExitNodes were not provided.
    65. 

  65. 

  66.     - "EntryNodes" behaves analogously.
    67. 

  67. 

  68.     - If "ExcludeNodes" is provided, then no circuit uses any of the
    69. 

  69.       nodes listed. If a circuit requires an excluded node to be used,
    70. 

  70.       and "StrictNodes" is false, then Tor uses the node in that
    71. 

  71.       position while not using any other of the excluded nodes.
    72. 

  72. 

  73.     - If "ExcludeExitNodes" is provided, then Tor will not use the nodes
    74. 

  74.       listed for the exit position in a circuit. If a circuit requires
    75. 

  75.       an excluded node to be used in the exit position and "StrictNodes"
    76. 

  76.       is false, then Tor builds that circuit as if ExcludeExitNodes were
    77. 

  77.       not provided.
    78. 

  78. 

  79.     - If a user tries to connect to or resolve a hostname of the form
    80. 

  80.       <target>.<servername>.exit and the "AllowDotExit" configuration
    81. 

  81.       option is set to 1, the request is rewritten to a request for
    82. 

  82.       <target>, and the request is only supported by the exit whose
    83. 

  83.       nickname or fingerprint is <servername>. If "AllowDotExit" is set
    84. 

  84.       to 0 (default), any request for <anything>.exit is denied.
    85. 

  85. 

  86.     - When any of the *Nodes settings are changed, all circuits are
    87. 

  87.       expired immediately, to prevent a situation where a previously
    88. 

  88.       built circuit is used even though some of its nodes are now
    89. 

  89.       excluded.
    90. 

  90. 

  91. 

  92. Compatibility:
    93. 

  93. 

  94.     The old Strict*Nodes options are deprecated, and the StrictNodes
    95. 

  95.     option is new. Tor users may need to update their configuration file.
    96.