Comment by 👻 ps
Re: "tor like system for yggdrasil it is of course rudimentary.…"
tor is about proxy chain; when yggdrasil is about VPN, using standard IPv6 stack.
Apr 14 · 3 weeks ago
5 Later Comments ↓
I mean, why not run tor on top of yggrasil, instead of writing something new to achieve the same functionality?
🐙 norayr [OP/mod] · Apr 16 at 08:32:
i don't know? can you run tor over yggdrasil? you can't access clearnet from yggdrasil. so tor nodes too.
and i saw people asking are there exit nodes from yggdrasil to clearnet.
so here it is. you can build yours with it.
you have a friend in other country? if the friend setups such an exit node fol you, you have vpn.
i myself want to test how useful can yggdrasil be for bypassing censorship.
lets say if you're in iran, i have heard it's not like there's a total network shutdown. i've heard some people have full access, and perhaps they afraid of total shutdown because nobody knows what may start not working. maybe even some medical devices need internet access today, who knows.
so if you are able to connect just to one yggdrasil node, then the whole tree is accessible for you.
and unlike tor, it has no centralized registry which will giv everyone list of all nodes.
i guess it is firstly not that trivial to get a list of all nodes?
but certainly one can setup a new node in seconds and if that new node address can be passed to someone behind the curtain, they may have access to the whole tree.
and with an exit node, to clearnet as well.
i don't know? can you run tor over yggdrasil?
this was the question i'm here asking you. i think you should be able to. Yggdrasil provides an IP network. Tor runs on top of IP. not to connect to "the" tor network, but to run one on yggdrasil with its own nodes.
and i saw people asking are there exit nodes from yggdrasil to clearnet. so here it is.
so you connect to the guard over yggdrasil but the exit node provides an exit point to the (regular) internet? I misunderstood what this was, i thought the exit node stayed in yggdrasil.
lets say if you're in iran,
so this is my biggest concern. if i'm doing something where i really *need* privacy on the internet, tor is one of the best tools to do that. it's heavily tested and scrutinized.
if the goal is to make a cool student project, learn a bunch of stuff and teach others by providing source code that is less intimidating than tor, this is definitely that.
but if the goal is to build privacy infrastructure it's a red flag (to me) that this was written from scratch instead of porting well-tested technologies.
🐙 norayr [OP/mod] · Apr 17 at 00:02:
yeah, there's no infrastructure alternative to tor now based on this project.
it is a toy project now, and someone may want to play with it.
i also, if you noticed haven't advised to use the author's hardcoded bootstrap node.
i advised to build own infra to play with it.
next, on tor.
the tor is 12 bootstrap nodes with fixed hardcoded addresses. and many many other nodes.
the tor is not accessible from yggdrasil.
the tor is itn own overlay network.
we can't use the tor.
we can, i guess if bootstrap node sources are published, create a second tor, not in clearnet but in yggdrasil.
but that will not be the tor from tor.org ran by tor team.
🐙 norayr [OP/mod] · Apr 17 at 00:12:
and on iran or situations alike.
imagine your friend's parents live in iran. the friend needs some kind of connection every day just to know the parents are ok.
and parents want to read international news.
if me and the friend setup some amount of nodes on ygg we control, and my friend will run an exit node, why is it bad?
we don't have one big tor like infra for everyone. but for this exacm family the exit node of their son can be a solution? i don't know? maybe it can't? but i or my shudent don't have an ambition that the car he built from the cardboard is an equal to the one produced in bmw factory.
still the cardboard car can be played with.
Original Post
tor like system for yggdrasil it is of course rudimentary. may have bugs. just a very rough test first draft. but it works! it is made by my student. we tested it today. right now it has a hardcoded bootstrap node. which is on his machine. you can deploy a bootstrap node on your computer, then there should be some other nodes that connect to your bootstrap node and tell it if they are entry(guard), middle or exit nodes. then the client on other machine connects to bootstrap, gets a list of…