Skip to content

GitLab

Trac
Trac

GitLab is used only for code review, issue tracking and project management. Canonical locations for source code are still https://gitweb.torproject.org/ https://git.torproject.org/ and git-rw.torproject.org.

Closed (moved)
Opened by Damian Johnson@atagar

No DNS means no exiting

If an exit is unable or unwilling to relay DNS requests then it's reverted to being a non-exiting relay [1].

Is this a good idea? There's a tradeoff where on one hand we want to keep lookups and connections on the same circuit (limiting the spread of potentially sensitive information and due to possible colluding for correlation), but on the other this is throwing away potentially useful exits.

This might be a non-issue for numerous reasons... a. If the risks of the former out weigh the benefits of the later. b. If this almost never occurs (since this is done on the client side there's no way to tell). c. We need to direct the failed DNS requests somewhere and exits that, say, disallow HTTP might be doing so for reasons that make handling DNS requests for webpages bad for them. For this one I'd suggest that we direct these requests to exits that explicitly allow port 53.

I'm moving the discussion here from irc since it didn't get any traction and I'd like to make sure that we aren't needlessly hurting the network with this behavior. Cheers! -Damian

[1] https://gitweb.torproject.org/tor.git/blob/HEAD:/src/or/router.c#l1867

From #tor-dev: 09:07 < atagar> Ahhh, evidently any exit relays DNS (reguardless of if they've allowed port 53), hence why it was ignoring the ExitPolicyRejectPrivate check. New couple questions in case anyone knows the answer offhand.

09:07 < atagar> Is anyone with any sort of accept before a reject-all in their exit policy considered to be an exit?

09:07 < atagar> Is this a good idea? Ie, are there cases where someone would want to be an exit but not provide DNS resolution? At present we drop relays that block tor from doing DNS resolution to be middle-hops (which could be hurting the network).

09:10 < atagar> here's the no-dns-makes-us-a-middle-hop code: https://gitweb.torproject.org/tor.git/blob/HEAD:/src/or/router.c#l1867

09:14 < shahn> The issue is that Tor connects to a hostname usually

09:15 < shahn> so if the exit node doesn't support DNS, then you can't use them for that without additional delays

09:17 < atagar> I understand why keeping lookups and connections on the same circuit is important, but is demoting these relays to be non-exits better than falling back to doing lookups via another circuit?

09:19 < shahn> (unless the resolution is already cached)

09:19 < atagar> of course

09:20 < shahn> sorry bigtime lag

To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information