[tor-bugs] #28461 [Core Tor/sbws]: Encourage sbws operators to install a local caching resolver
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Nov 15 23:25:26 UTC 2018
#28461: Encourage sbws operators to install a local caching resolver
---------------------------+-----------------------------
Reporter: teor | Owner: (none)
Type: defect | Status: new
Priority: Medium | Milestone:
Component: Core Tor/sbws | Version: sbws: 1.0.0
Severity: Normal | Resolution:
Keywords: doc | Actual Points:
Parent ID: #28458 | Points:
Reviewer: | Sponsor:
---------------------------+-----------------------------
Comment (by teor):
Replying to [comment:1 juga]:
> I don't think this is a good idea, because:
> 1. you give more work to bwauths
Yes, this is true. Although installing a caching / recursive resolver
takes about 5 minutes.
> 2. sbws relay on one more external thing
sbws already relies on the system DNS resolver, which is sometimes
unreliable.
Installing a caching or recursive resolver makes DNS more reliable.
> 3. sbws traffic is fingerprintable, but dns queries will go in most
cases in clear
sbws already relies on the system DNS resolver, which sends DNS queries in
the clear.
> 4. if using a CDN, the ip that that the bwauth server gets will be
different that the one the exit will see, so checking if we can exit with
a relay with that ip, doesn't make sense
We already talked about the CDN issue in:
https://trac.torproject.org/projects/tor/ticket/28458#comment:3
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/28461#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list