Skip to content
GitLab
  • Menu
Projects Groups Snippets
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
  • Tor Tor
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 316
    • Issues 316
    • List
    • Boards
    • Service Desk
    • Milestones
  • Merge requests 36
    • Merge requests 36
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Repository
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • The Tor Project
  • Core
  • TorTor
  • Issues
  • #40427
Closed
Open
Created Jul 05, 2021 by pseudonymisaTor@pseudonymisaTor❄Contributor

enable TCP timestamps on outgoing ORcon

Summary

Make use of TCP timestamps, enable it via socks options on outgoing connections. Defined in RFC 1323. Tor could benefit from some better TCP congestion flow control? The Client or relay does not know what TCP congestion algorithm the other peer may use.

TCP timestamps are enabled by default In Linux kernel.

It was once disabled in some distros, because the bad implementation of timestamp start time was your system uptime and this fingerprinting could leak your uptime on every connection. This was fixed 2 decades ago. So why not use it now for all and not only some? All Tor Connection should look most identical for fingerprinting reasons.

Why not use it? Worst thing to happen is, that it could add 8 extra bytes of TCP header in total.

What is the expected behavior?

TCP connections should be always enabling timestamps, to make fingerprinting harder.

WiP: +TCP_TIMESTAMPS.patch

Edited Aug 18, 2021 by pseudonymisaTor
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
Time tracking