[tor-talk] risk of relay exploit

starlight at binnacle.cx starlight at binnacle.cx
Tue Oct 15 16:03:05 UTC 2013


Can anyone comment on the pros and cons of running
a separate client-only 'tor' instance for local
browsing while maintaining an independent instance
configure as a relay?

My thought is that if high-resource malicious
actor exploits/subverts the relay code and inserts
a trojan/parasite, they would be in a position
to monitor unencrypted traffic on the SOCKS port.

Is the probability of exploit significantly
reduced for instances that do not accept relay
connections?  If so then keeping local browsing in
a non-relay client would be more secure since I
understand that remote relays see only encrypted
traffic.



More information about the tor-talk mailing list