On Sat, 09 Aug 2014 15:32:26 +0000 [email protected] wrote: > Huck Toohey wrote: > > It seems essential that all Tails users be able to assert explicit > > entry, exit, and relay nodes; and to avoid ever connecting even > > momentarily to an entry (or relay) which they have reason to suspect > > may be monitored, lest all their future access be denied, for > > example by an authoritarian regime. > > Note that from an anonymity point of view, choosing yourself your > circuit can be bad because it can distinguishes you slightly from the > rest of the Tor users which use random circuits.
Of course I appreciate that. I am hoping for persistent 'use bridges 1' with a frequently updatable list and maybe even the ability to update that list via script - using the same ones everyone else with a need for bridges is using, "randomly" selected. I would avoid static routes, I promise. :) I believe it ought to be possible, also, to persistently reject use of certain exits (ExitPolicy reject x.x.x.x) for concerns similar - although I can see, too, some controversy with that. > Still, we have plans to add a persistence option for some Tor > settings: > > https://labs.riseup.net/code/issues/5461 That looks great. I'm glad to see that my principle concern is shared. > It is already possible to configure bridges, proxy, and firewall > limitations from Tails Greeter: > > https://tails.boum.org/doc/first_steps/startup_options/network_configuration/ Thanks! As above, I see additional good purpose in being able to reject flagged exits as well, and to do be able to do that in addition to bridge-configuration, persistently. Someone has just mentioned in a parallel thread an issue which is at least tangentially related. In Tails v1.0.1, I did not have to reset my system clock on each connect. My guess is that this was seen in 1.1 dev as a necessary security adaptation. Guesswork aside, I would greatly prefer to have an option, even though there may be need for a warning-dialog if choosing the option, to make this persistent also. Thanks very much for the useful information, sajolida, and for responding to each of my concerns. -- HT
signature.asc
Description: PGP signature
_______________________________________________ tails-support mailing list [email protected] https://mailman.boum.org/listinfo/tails-support To unsubscribe from this list, send an empty email to [email protected].
