[tor-bugs] #9670 [Tor]: Disable exploratory client circuit builds during botnet
Tor Bug Tracker & Wiki
blackhole at torproject.org
Wed Sep 4 18:40:53 UTC 2013
#9670: Disable exploratory client circuit builds during botnet
------------------------+--------------------------------
Reporter: arma | Owner:
Type: task | Status: new
Priority: normal | Milestone: Tor: 0.2.5.x-final
Component: Tor | Version:
Resolution: | Keywords: tor-auth
Actual Points: | Parent ID: #9657
Points: |
------------------------+--------------------------------
Comment (by mikeperry):
I *think* if we set the following, it will cause CBT to very slowly
compute a timeout and then ignore it:
{{{
cbtmincircs=10 # I think 3 is the lowest that is safe, but some
breathing room is nice
cbtmintimeout=60
cbttestfreq=1000000 # (1 meeelion or so sounds about right)
}}}
We should test this on a couple real Tor clients before rolling it out as
consensus parameters. It may still do strange things (like emitting a lot
of warns or something, esp if cbtmincircs is low enough to produce weird
statistics).
Here's the equivalent #defines in or.h:
{{{
CBT_DEFAULT_MIN_CIRCUITS_TO_OBSERVE
CBT_DEFAULT_TIMEOUT_MIN_VALUE
CBT_DEFAULT_TEST_FREQUENCY
}}}
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/9670#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list