[Freedombox-discuss] DNS std for Freedomboxes? [was Re: Establishing Communicationbetween Freedomboxes]

[Tony Godshall]

>>> Is Tor centralized this way?
>
>> The Tor directory authorities are centralized, but the effect of
>> compromising a DNS root server is probably worse than compromising a
>> Tor directory authority.
>
> Right. Since Directory Protocol v2, statements made by a Directory
> authority are believed by a Tor client "iff they were attested to by
> more than half of the authorities", so an adversary needs to
> compromise more than half of the Tor Directory authorities to be able
> to lie effectively to Tor clients.
>
> See dir-spec-v2.txt in the torspec Git repository¹ for details.
> The "0.1. History" section of the (WIP) dir-spec.txt is a nice
> introduction to how such matters are dealt with by Tor.
>
>  1. git://git.torproject.org/torspec.git
>
> Bye,


Thanks

Is there any reason why Tor-based DNS should not be the default for
the freedombox?

The arguments in favor would seem to be that it

- is well tested

- bypasses DNS manipulation by an ISP or adversary capable of
compromising less than half of Tor

- makes DNS lookups encrypted

It does not, however, keep an adversary from logging connections by
actual ip address (except for those that go through the high-latency
Tor hidden service mechanism of course)

Tony