[metrics-bugs] #25742 [Metrics/Onionoo]: add more metadata about relays: #1 DNSSEC validation, #2 DNS server
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Apr 9 13:25:41 UTC 2018
#25742: add more metadata about relays: #1 DNSSEC validation, #2 DNS server
---------------------------------+--------------------------
Reporter: cypherpunks | Owner: metrics-team
Type: enhancement | Status: new
Priority: Medium | Milestone:
Component: Metrics/Onionoo | Version:
Severity: Normal | Keywords:
Actual Points: | Parent ID:
Points: | Reviewer:
Sponsor: |
---------------------------------+--------------------------
It would be great to show relay operators more information about what they
could improve on their relay configuration. In the area of exits and DNS
this could be:
- DNSSEC
- do not use Google, Cloudflare, Quad9,.. DNS server
To support this we would first need two new onionoo fields before adding
indicators to Relay Search. Both fields are only relevant for exit relays.
dnssec_validation: boolean
True if the exit relay does validate
dns_resolver: string
PTR record for the IP address used to resolve a hostname via this exit.
To collect the data you could run exitmap's dnssec and dnsenum modules
once every ~12 hours.
https://github.com/NullHypothesis/exitmap/blob/master/src/modules/dnssec.py
https://github.com/NullHypothesis/tor-dns/blob/master/code/resolvers-of-
exit-relays/dnsenum.py
context:
https://twitter.com/nusenu_/status/983302939258138626
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25742>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the metrics-bugs
mailing list