[prev in list] [next in list] [prev in thread] [next in thread]
List: whonix-devel
Subject: [Whonix-devel] Constraining Ephemeral Service Creation in Tor
From: bancfc () openmailbox ! org
Date: 2016-09-28 14:59:40
Message-ID: c2804575bc0f9ca0758b0ac27d1e5bce () openmailbox ! org
[Download RAW message or body]
Hello, We are working on supporting ephemeral onion services in Whonix
and one of the concerns brought up is how an attacker can potentially
exhaust resources like RAM. CPU, entropy... on the Gateway (or system in
the case of TAILS) by requesting an arbitrary number of services and
ports to be created.
In our opinion, options in core Tor for setting a maximum number of
services and ports per service seems the right way to go about it. Also
rate limiting the requests (like you do with NEWNYM) would be a sensible
thing to do.
What are your opinions about this?
_______________________________________________
You are receiving this e-mail because you subscribed Whonix-devel mailing list. To \
unsubscribe visit https://www.whonix.org/cgi-bin/mailman/listinfo/whonix-devel or \
mail "unsubscribe" to Whonix-devel-unsubscribe@whonix.org.
Sie erhalten diese E-Mail, weil Sie die Whonix-devel Mailingliste aboniert haben. Zum \
abbestellen besuchen Sie https://www.whonix.org/cgi-bin/mailman/listinfo/whonix-devel \
oder mailen Sie "unsubscribe" an Whonix-devel-unsubscribe@whonix.org.
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic