Delivery-Date: Sun, 09 Nov 2014 04:27:21 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.2 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,RP_MATCHES_RCVD,T_DKIM_INVALID,URIBL_RHS_DOB autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id C275F1E0525;
	Sun,  9 Nov 2014 04:27:19 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 412D8319D9;
	Sun,  9 Nov 2014 09:27:16 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 9203E319CD
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 09:27:12 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 7GZvzAz15EVV for <tor-talk@lists.torproject.org>;
 Sun,  9 Nov 2014 09:27:12 +0000 (UTC)
Received: from s2.netcompartner.com (s2.netcompartner.com [80.86.85.53])
 by eugeni.torproject.org (Postfix) with ESMTP id 379AE319CC
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 09:27:12 +0000 (UTC)
Received: from ncpws04.localnet (ncpws04.netcompartner.com
 [IPv6:2001:470:ec48:0:e2cb:4eff:fe3e:11c6])
 by s2.netcompartner.com (Postfix) with ESMTPSA id 718CEC0606
 for <tor-talk@lists.torproject.org>; Sun,  9 Nov 2014 10:27:09 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple;
 d=reclaim-your-privacy.com; s=2014; t=1415525229;
 bh=0Vqsmj3XXd2APxn2ksrTaWAzXDLHX6C5a0UNO2bS2k4=;
 h=From:To:Subject:Date:In-Reply-To:References:From;
 b=btrTyRxh2MzGXx+ruh3QVElaHCz/tVbfQoTvYrin0VaabzJvtBZZCV0NkfRXVTJC+
 WgBxoo7T6abyclQX6BLkZ+FktlxqKPGMdxEPqYd4KBZDrRpg8OqdKPmMu7x74ejQaw
 8rXxoggLqum/0gQBA6VTz6X22GxsBBvIPfe0SyNXd93z6ZBlgrsmP4MjEru/bBwW68
 K262ub5b4Om4b81M4K+bIOdyVfA3WLW93EGTrbwdLkDVliUlng+3qM5IlpbkN+7Fpe
 eVT2ykpXNmST2oKfkMMswdlBZb/NqMDjS7tsBmI8Io3TJ1yVcyFMIF0BaAhikSAWLe
 HXrVyxW9D2sPg==
From: Lars Boegild Thomsen <lth@reclaim-your-privacy.com>
To: tor-talk@lists.torproject.org
Date: Sun, 09 Nov 2014 17:27:03 +0800
Message-ID: <1462120.4xZilL0l5k@ncpws04>
Organization: Reclaim Your Privacy
User-Agent: KMail/4.14.1 (Linux/3.16-3-amd64; KDE/4.14.2; x86_64; ; )
In-Reply-To: <545CF363.7020201@gmail.com>
References: <7488606.2oxgLGVBPl@ncpws04> <3413830.AxW13VOK2Y@ncpws04>
 <545CF363.7020201@gmail.com>
MIME-Version: 1.0
Subject: Re: [tor-talk] Cloak Tor Router
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============6239670235128122755=="
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>


--===============6239670235128122755==
Content-Type: multipart/signed; boundary="nextPart8905490.Lyvgc75Lqj"; micalg="pgp-sha1"; protocol="application/pgp-signature"


--nextPart8905490.Lyvgc75Lqj
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain; charset="us-ascii"

On Friday 07 November 2014 17:29:23 Aymeric Vitte wrote:
> And 5 "do not send anything outside", no? Usually you can restrict wi=
th=20
> your ISP box but can you trust it?
> What happens if you connect directly your PC to the Cloak with a cabl=
e?

I haven't really decided.  The box have a wan as well as a lan port.  I=
 sort of expected to leave the lan port open and it certainly is in the=
 current firmware version.  One option would be to make it possible to =
toggle it with a press on a button, but I really haven't thought that o=
ne through at all.  Any ideas appreciated.

> Maybe the concept of several wifis is good but I don't see it very=20=

> usable, not sure what would be the security requirements for this but=
=20
> assuming that I am trusting my local network why not a simple web=20
> interface where you can configure the same for any device connected t=
o=20
> the box:

I think that is mostly related to the target audience for a device such=
 as this.  The less that needs to be configured the better - assuming t=
hat most users  interested in a box such as the Cloak won't want to mak=
e massive reconfiguration.  Of course a "power user" can squeeze the bo=
x to run exactly as they prefer.  But it's important to me to have sens=
ible default so that as many people as possible can use it without chan=
ging anything.

>=20
> - do not allow anything outside
> - allow all traffic outside Tor
> - force everything through Tor (warning: close your bittorrent client=
s)
> option: the Cloak could detect the bittorrent traffic
> - force eveything through Tor except torrents
> - force ssl through Tor, non ssl outside

Question - is Bittorrent still an issue at all?  I actually tried a few=
 days ago - a quite popular torrent (thousands of seeds) bootstrapping =
using a magnet link - my netbook connected to a Cloak prototype with ev=
ery single TCP port routed through Tor.  After 24 hours the magnet hadn=
't even downloaded - not a single byte received.  I suspect all tracker=
s are using UDP now - and I guess most bittorrent clients too.

=2D-=20
Lars Boegild Thomsen
https://reclaim-your-privacy.com
Jabber/XMPP: lth@reclaim-your-privacy.com
--nextPart8905490.Lyvgc75Lqj
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part.
Content-Transfer-Encoding: 7Bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAABAgAGBQJUXzNqAAoJECTnqaDCoNb0FKgH/jeQ1V0ZiYQuLvwRWImAngrb
Z1J2mqUysZELK1FWbfiC4gj/nHSiggr8GTC4eduV/b59CnsYtIVvtHr6+OXKSL1c
iDHsjAruj+BHmH9LPMKImmqu390uCegpfhBkniLMZYzQyJvctyX/le4s7lMmNWh/
q4/IsgyjUkJmEVTn9PMvM+/dxrqBCUrEpeMorjjhTGy+LxebSd+0f0dsLcUYcGbU
+8wpjUE/SyfAcckIoerMuDgsgqm4tv/EeuDAALIWJIjiwToTs978RtwgaLwFzi/A
FpmA4rRIAyRbv4a+VH+ttw83Xx+Li+wO0SfB3ZpwhgyknOT+H2qVdesa4qGQeMg=
=5ccQ
-----END PGP SIGNATURE-----

--nextPart8905490.Lyvgc75Lqj--


--===============6239670235128122755==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

--===============6239670235128122755==--

