[metrics-bugs] #29624 [Metrics/Exit Scanner]: New version of exit list format
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Apr 4 13:37:34 UTC 2019
#29624: New version of exit list format
-------------------------------------+--------------------------
Reporter: irl | Owner: irl
Type: task | Status: accepted
Priority: Medium | Milestone:
Component: Metrics/Exit Scanner | Version:
Severity: Normal | Resolution:
Keywords: metrics-roadmap-2019-q2 | Actual Points:
Parent ID: #29650 | Points:
Reviewer: irl | Sponsor:
-------------------------------------+--------------------------
Comment (by irl):
I'm currently working on this, it is taking a little longer than I would
have hoped because I'm first getting a handle on cert-spec. I'd like us to
be able to define this in a way that we don't need a version 3 to add
signatures.
My thoughts so far are:
* exit scanners will have Ed25519 keys
* there may be one long-lived identity key and one shorter-term signing
key (to allow offline master key)
* there won't be any RSA keys, it will be "Ed25519-first"
* we re-use the certificate formats from cert-spec
* signing is optional, if there is no identity line then no signature
should be expected
Two changes are going to be related to unifying the keywords between this
spec and dir-spec. created->published, software->platform.
I think the address4|6 lines should be optional, so that we can prevent
the scanners becoming targets for attack.
I need to pause on this to look at other tasks, but hopefully will return
soon and we can get this bit finished off.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29624#comment:12>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the metrics-bugs
mailing list