[tor-talk] Connection padding set to 1 vs auto

Nick Mathewson nickm at torproject.org
Mon Aug 10 13:44:44 UTC 2020


On Sat, Aug 8, 2020 at 3:59 PM procmem at riseup.net <procmem at riseup.net> wrote:
>
> Hi. I was wondering if setting the connection padding setting in torrc
> to 1 instead of auto has any benefit in protecting against a passive
> adversary outside the Tor network.

I don't think it'll have much effect?  The "auto" option means "pad
when padding is negotiated"; the "1" option means "pad even if the
relay doesn't have padding support."  But all currently supported
relay versions ought to have padding support, so there shouldn't be a
difference, in theory.

If I understand correctly (and Mike could correct me here), in its
current form, the ConnectionPadding option helps against ISPs who are
using common flow-logging settings on their internet routers, or
against after-the-fact adversaries who get access to these logs later
on.  It isn't so useful against an adversary who has set up better
logging in advance.

(Mike, did I get this right?)

cheers,
-- 
Nick


More information about the tor-talk mailing list