Delivery-Date: Tue, 15 Mar 2016 10:53:08 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.2 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
	T_RP_MATCHES_RCVD autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 7FC441E0FBE;
	Tue, 15 Mar 2016 10:53:06 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id E2215397F2;
	Tue, 15 Mar 2016 14:52:57 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 29884393EA
 for <tor-talk@lists.torproject.org>; Tue, 15 Mar 2016 14:52:54 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id C3UhrCsYkucN for <tor-talk@lists.torproject.org>;
 Tue, 15 Mar 2016 14:52:54 +0000 (UTC)
Received: from mout01.posteo.de (mout01.posteo.de [185.67.36.65])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "*.posteo.de",
 Issuer "StartCom Class 3 Primary Intermediate Server CA" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id EEA3B36821
 for <tor-talk@lists.torproject.org>; Tue, 15 Mar 2016 14:52:53 +0000 (UTC)
Received: from dovecot03.posteo.de (dovecot03.posteo.de [172.16.0.13])
 by mout01.posteo.de (Postfix) with ESMTPS id 8F72C20A24
 for <tor-talk@lists.torproject.org>; Tue, 15 Mar 2016 15:52:50 +0100 (CET)
Received: from mail.posteo.de (localhost [127.0.0.1])
 by dovecot03.posteo.de (Postfix) with ESMTPSA id 3qPczk0wZ2z5vMw;
 Tue, 15 Mar 2016 15:52:50 +0100 (CET)
To: ITechGeek <itg@itechgeek.com>, tor-talk@lists.torproject.org
References: <56E81D46.1050206@posteo.de>
 <CAN2EnhDLrPaB-bvVr1OWJYk5WdtFpxkrakEGboRWQ8pA68NvBQ@mail.gmail.com>
From: Martin Kepplinger <martink@posteo.de>
Message-ID: <56E82164.2030005@posteo.de>
Date: Tue, 15 Mar 2016 15:51:16 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101
 Icedove/38.6.0
MIME-Version: 1.0
In-Reply-To: <CAN2EnhDLrPaB-bvVr1OWJYk5WdtFpxkrakEGboRWQ8pA68NvBQ@mail.gmail.com>
Subject: Re: [tor-talk] What IPs does Torbrowser need?
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

What do you mean? blocking traffic from the Tor network is very common
and a standard feature that torproject itself supports.

This is just the same in reverse. The list of all relays is publically
available. Pick which ever you want and block or whitelist them.

It's more of a technical question about Torbrowser: "how to build a
Torbrowser-only compatible router", described at a high level.

thanks

                     martin


Am 2016-03-15 um 15:42 schrieb ITechGeek:
> And if they were willing to give that out, imagine how much China, Iran,
> or a number of other gov'ts would love that list (although I doubt
> they'd be whitelisting the IPs).
> 
> -----------------------------------------------------------------------------------------------
> -ITG (ITechGeek)
> ITG@ITechGeek.Com
> https://itg.nu/
> GPG Keys: https://itg.nu/contact/gpg-key
> Preferred GPG Key: Fingerprint: AB46B7E363DA7E04ABFA57852AA9910A DCB1191A
> Google Voice: +1-703-493-0128 / Twitter: ITechGeek / Facebook:
> http://fb.me/Jbwa.Net
> 
> On Tue, Mar 15, 2016 at 10:33 AM, Martin Kepplinger <martink@posteo.de
> <mailto:martink@posteo.de>> wrote:
> 
> 
>     Hi
> 
>     Imagine a router that wants to only whitelist the IP addresses that
>     Torbrowser needs to work. What IPs would it need (for start up and
>     browsing and everything) ?
> 
>      * Guards
>      * Authorities
>      * HSDir flagged relays (?)
> 
>     and would such a whitelisting of IPs even be enough? At least I think
>     DNS can be ignored as it is routed over Tor too. Any more thoughts?
> 
> 
>                            martin
>     --
>     tor-talk mailing list - tor-talk@lists.torproject.org
>     <mailto:tor-talk@lists.torproject.org>
>     To unsubscribe or change other settings go to
>     https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk
> 
> 

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

