Delivery-Date: Tue, 06 Jan 2015 06:06:06 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.7 required=5.0 tests=BAYES_00,DKIM_ADSP_CUSTOM_MED,
	DKIM_SIGNED,FREEMAIL_FROM,RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID,
	URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id D13731E02CB
	for <archiver@seul.org>; Tue,  6 Jan 2015 06:06:04 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 6BCFC32D4B;
	Tue,  6 Jan 2015 11:05:32 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 819AB32ABD
 for <tor-talk@lists.torproject.org>; Tue,  6 Jan 2015 11:05:27 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id ghtYGkCg5NyE for <tor-talk@lists.torproject.org>;
 Tue,  6 Jan 2015 11:05:27 +0000 (UTC)
Received: from mail-ig0-x22e.google.com (mail-ig0-x22e.google.com
 [IPv6:2607:f8b0:4001:c05::22e])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id 5ADD4328DD
 for <tor-talk@lists.torproject.org>; Tue,  6 Jan 2015 11:05:27 +0000 (UTC)
Received: by mail-ig0-f174.google.com with SMTP id hn15so3987914igb.1
 for <tor-talk@lists.torproject.org>; Tue, 06 Jan 2015 03:05:25 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :content-type; bh=BKXRqTeM7VB5tgsmLl2rOFGjnTtsM31/HwA78uVAZmk=;
 b=AuDD0YsJtCSrYUd3AGb6XHUuKU5xPjWGL3easS7bHpUZHhuH01kKvZ1AdDdLOOBhO+
 estCQhKn7zLhTA4T7JDzcD6ZcMEkAH0xeag7M/Cw+f0zIHPnS0PijCfnybFPfI7dmVCN
 E75uSxRmg9wTUM0HuRXnKt6kjgQEBItrwXTSzvouRX8D1j03kI4KSwETBGCGWz7yVW1d
 QNFYO04iU7rkaENoPxxwAodRph54uws9SAfWsWzj2tMY/fdFBJtPXHapBZvY/NGIBF7g
 SNCBNe9+vQCroYdxyDLcnzbeB7Zvvx3IeiCGx2Y2dK3w+R/HWFI6V8chI84UZcBhxKzf
 Q6qQ==
MIME-Version: 1.0
X-Received: by 10.42.235.80 with SMTP id kf16mr27358965icb.77.1420542325131;
 Tue, 06 Jan 2015 03:05:25 -0800 (PST)
Received: by 10.64.125.69 with HTTP; Tue, 6 Jan 2015 03:05:25 -0800 (PST)
In-Reply-To: <20150105161455.GN4490@mail2.eff.org>
References: <CAB=COR7iiKtvJhkBhar=hch287R0yDsDyW=vapBZJOZ+NqnfWg@mail.gmail.com>
 <20150105161455.GN4490@mail2.eff.org>
Date: Tue, 6 Jan 2015 12:05:25 +0100
Message-ID: <CAB=COR7HAjySukGFK+BE6uhd7a_Wm_u5T_dmDfJZL9vzxCgviw@mail.gmail.com>
From: Hollow Quincy <hollow.quincy@gmail.com>
To: tor-talk@lists.torproject.org
Subject: Re: [tor-talk] TOR issues
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

[...]
>> 1) Who store the mapping Onion_URL to real IP ? How exit node know
>> where to send request ?
>
> Exit nodes aren't used for hidden services at all.  Onion URLs are only
> used to refer to hidden services, which communicate entirely within the
> Tor network and don't exit.  Most uses of Tor use exit nodes to reach
> public services on the ordinary Internet, instead of using onion URLs.
>
> The hidden service directory mapping is performed by the hidden service
> directory. :-)

I understand that "the hidden service directory" is "DB" in this diagram:
https://www.torproject.org/docs/hidden-services.html.en

Do you know how to get this list "manually" ? Is it exposed somewhere
publicly ? Can I download it as file ?

>> 3) How the communication is encrypted between nodes ?
>> RSA encryption is not resistant for Man In The Middle attack. (that's
>> why when I connect to new SSH server I need to add public key of the
>> server to trusted list).
>> When I use TOR my request goes to Node1 and than to Node2. How can I
>> establish save connection with Node2, when Node1 is between us ?
>
> Each Tor relay has its own public key which it declares when registering
> with the Tor directories.  The Tor directories confirm that they have
> the same view of the relays on the network, and the relays' public key,
> through the consensus mechanism.
>
> That means that the Tor directories are something like certificate
> authorities or PKI for the regular Tor relays.  You have to trust the
> consensus of the directories to give you the correct public keys for the
> relays you plan to use, so that no relay (or ISP) can perform an
> undetected man-in-the-middle attack.
>
> https://www.torproject.org/docs/faq#KeyManagement

I still don't understand one step here
(https://www.torproject.org/docs/hidden-services.html.en)
why client cannot communicate with hidden service using "Introduction
points" but they try to establish connection using other machines
"rendezvous point".
If they switched some information thought one channel, why cannot they
communicate all the time ?

Thank you for help
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

