New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Investigate server isolation using multiple Tor circuits #209
Comments
If resource utilization is too high, then maybe it should be an option rather than default. I have no idea if battery life and CPU/RAM would be greatly affected, especially on older phones. I'm running an iPhone SE and would probably not want this feature all the time depending on effects. |
The But! The TBB model is actually not a bad idea. I believe it's actually simpler: circuit changes if the address bar You automatically get a different circuit (or set of circuits) if you provide a different SOCKS5 username or password to Tor's SOCKS proxy -- so we wouldn't actually need to do any live config changes to Tor via the control port. (Also: reusing a previously-used value would use the previous circuit if Tor still has it active.) I think we could do this in the part of the interceptor/protocol handler/whatever that hooks the SOCKS proxy onto the UIWebView traffic. (On a train with poor wifi right now, but happy to poke around some more on this.) |
Bringing in some research/thoughts from #226:
Problem is, I took a look and the Psiphon code that sets the SOCKS port ( I think I know the ID we'd want to use, which is something like this in BrowsingViewController (ignore the debug bits and any other minor errors) :
But I don't see an easy way of untangling things and sending that over to where the |
Ok, I think we won't do this. Too much effort for too little gain. |
Should we use per-server circuits?
https://2019.www.torproject.org/docs/tor-manual.html.en
Check out
EnforceDistinctSubnets
andIsolateDestAddr
config options.Could use a lot of resources according to this discussion:
https://tor.stackexchange.com/questions/12268/isolatedestaddr-and-isolatedestport-usage
Idea came from this.
https://tb-manual.torproject.org/managing-identities/
The text was updated successfully, but these errors were encountered: