see when a connection starts • exit nodes see when it terminates Tor has protections for entry/exit positions - entry guards, bad relay monitoring, size of network Correlation attacks
Generate random 1024-bit RSA key 3) Check if hash precedes the first real descriptor ID in the DHT 4) If not, goto 2 Predictable and fast? Bruteforce it!
when a connection starts - HSDir see when it terminates “entry” does not just mean your entry node - ISP, malicious access point, pen register… Vulnerability of Tor
purpose against a hidden service as a malicious exit relay would in a basic correlation attack 2) The “entry side” of a Tor connection can be monitored by means other than compromising guards
need location hiding, you are unnecessarily exposing your users to this risk. It would probably be better to let them use Tor on your TLS-enabled clearnet site.