torproject / nyx

Command-line monitor for Tor.
https://nyx.torproject.org/
GNU General Public License v3.0
123 stars 26 forks source link

nyx shows me out outbound connections from other tors #18

Open armadev opened 4 years ago

armadev commented 4 years ago

I run Tor Browser Alpha, and set it to use Snowflake. Then I run "nyx -i 9151". It shows me some circuits that start at the Snowflake bridge, but it also shows me some direct connections to random relays.

Woah! Is Tor broken? Is it connecting to these other relays as Directory Guards, and using my snowflake bridge for the 3-hop circuits? What's going on?

Then I close ricochet, which is not using Tor Browser's socksport or its controlport, and the other outbound connections on my nyx dashboard go away.

Tor can know what are my outbound connections, by "getinfo orconn-status". This is a case where using netstat picks up extraneous connections, and alarms me by telling me my Tor is using them when it isn't.

Related to issue #9 here, but it is on the client side, and it looks like a security issue until you figure out what's going on, so I'm going to file it as its own ticket and let atagar figure out how he wants to move forward.

Thanks!