[tor-bugs] #12537 [- Select a component]: Perhaps BridgeDB should supply decoys

Fri Jul 4 11:33:13 UTC 2014

#12537: Perhaps BridgeDB should supply decoys
----------------------------------+---------------------
 Reporter:  andrea                |          Owner:
     Type:  defect                |         Status:  new
 Priority:  normal                |      Milestone:
Component:  - Select a component  |        Version:
 Keywords:                        |  Actual Points:
Parent ID:                        |         Points:
----------------------------------+---------------------
 The opposition would like to enumerate bridges and does stuff like this:

 {{{
 // START_DEFINITION
 requires grammar version 5
 /**
  * Identify clients accessing Tor bridge information.
  */
 fingerprint('anonymizer/tor/bridge/tls') =
 ssl_x509_subject('bridges.torproject.org') or
 ssl_dns_name('bridges.torproject.org');

 /**
  * Database Tor bridge information extracted from confirmation emails.
  */
 fingerprint('anonymizer/tor/bridge/email') =
 email_address('bridges at torproject.org')
   and email_body('https://bridges.torproject.org/' : c++
   extractors: {{
     bridges[] =
 /bridge\s([0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}):?([0-9]{2,4}?[^0-9])/;
   }}
   init: {{
     xks::undefine_name("anonymizer/tor/torbridges/emailconfirmation");
   }}
   main: {{
     static const std::string SCHEMA_OLD = "tor_bridges";
     static const std::string SCHEMA_NEW = "tor_routers";
     static const std::string FLAGS = "Bridge";
     if (bridges) {
       for (size_t i=0; i < bridges.size(); ++i) {
         std::string address = bridges[i][0] + ":" + bridges[i][1];
         DB[SCHEMA_OLD]["tor_bridge"] = address;
         DB.apply();
         DB[SCHEMA_NEW]["tor_ip"] = bridges[i][0];
         DB[SCHEMA_NEW]["tor_port_or"] = bridges[i][1];
         DB[SCHEMA_NEW]["tor_flags"] = FLAGS;
         DB.apply();
       }
       xks::fire_fingerprint("anonymizer/tor/directory/bridge");
     }
     return true;
   }});
 // END_DEFINITION
 }}}

 (from http://daserste.ndr.de/panorama/xkeyscorerules100.txt)

 If some of the bridge IPs they managed to scrape in this fashion were
 randomly generated decoys, they would have to do more work to explicitly
 test them.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/12537>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online