Tor DNS lookups failing
Mike Perry
mikepery at fscked.org
Mon Dec 4 11:10:08 UTC 2006
Thus spake Jay Goodman Tamboli (jay at tamboli.cx):
> A few months ago I modified Snakes on a Tor to do DNS lookups through
> various nodes and compare the results. At the time there was a node
> that was intermittently giving users an ad page instead of a real
> page. I found then that the only node that was returning an IP
> address that was incorrect was "whistlersmother," but I didn't report
> that here because I was a little unsure about my methodology.
>
> Last week I started scanning again with a better idea of what I was
> doing. Notably, the latest Tor alpha resets the DNS cache on NEWNYM,
> so I didn't have to much with the Tor source to stop it from caching
> the lookups. After a couple of days of scanning, I haven't found any
> nodes returning incorrect information, but I have seen more lookup
> failures than I remember seeing last time. This jibes with my
> personal experience, where I feel like I've seen more DNS lookup
> failures than previously.
>
> I was wondering, first, if other people are seeing fairly frequent
> erroneous DNS failures. Secondly, is there anything Tor can do to
> improve the situation, like requesting a second lookup via another
> circuit if one reports a failure, or maybe not caching failures? I'm
> not sure either of those is a good solution, but right now when I get
> a failure I have to either wait for the circuit to time out or send
> Tor NEWNYM. Otherwise the result seems to be cached, so a reload in
> my web browser just gives me the Privoxy error page again.
Yeah, I just started noticing a lot of DNS failures on my most recent
batch of scanning as well. I've got a fair amount of work to do before
SoaT 0.0.5 is ready (I think I've just about hit the limit of
maintainable complexity in a perl script :), but when it's done it
should be able to help us figure out which servers this is happening
at, as well as a shitload of other interesting info as well.
I'm hoping to make the release next weekend.
--
Mike Perry
Mad Computer Scientist
fscked.org evil labs
More information about the tor-talk
mailing list