[tor-bugs] #18142 [Tor]: Anti-Automated-Scanning: Support "marking" with iptables TCP connections differently "for each circuits"
Tor Bug Tracker & Wiki
blackhole at torproject.org
Mon Jan 25 12:36:39 UTC 2016
#18142: Anti-Automated-Scanning: Support "marking" with iptables TCP connections
differently "for each circuits"
-------------------------+----------------------------------
Reporter: naif | Owner:
Type: enhancement | Status: new
Priority: Low | Milestone: Tor: unspecified
Component: Tor | Version: Tor: unspecified
Severity: Normal | Resolution:
Keywords: tor-core | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------+----------------------------------
Changes (by yawning):
* priority: Medium => Low
* keywords: => tor-core
* version: => Tor: unspecified
* milestone: => Tor: unspecified
Comment:
I'm skeptical about this for the reasons that cypherpunks mentioned, and
that it'll be fundamentally non-portable.
The portable version of this sort of mitigation would be something like
clamping the number of simultaneous streams to a given value, like how we
can for HSes, but that still is of limited use, and would be either overly
brittle or totally pointless depending on what the exact number for "given
value" ends up being.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18142#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list