tor-webwml.git

@@ -1089,55 +1089,6 @@ information see ticket 7416.</a></b>

     </p>

     </li>

-<!--

-    <a id="orbotVPN"></a>

-    <li>

-    <b>Orbot Android VPN</b>

-    <br>

-    Effort Level: <i>Medium</i>

-    <br>

-    Skill Level: <i>High</i>

-    <br>

-    Likely Mentors: <i>Nathan (n8fr8)</i>

-    <p>

-Android offers the ability for any application to establish a

-VPNService through which all traffic on the device is sent. We want to

-implement this type of service in order to route all traffic through

-the Tor network. This is a feature that will be implemented directly

-into Orbot: Tor for Android if successfully implemented.

-    </p>

-

-    <p>

-The deliverables for the project will be a working Android VPN

-implementation that routes traffic through Tor, and integration of VPN

-code into the Orbot app. There must also be time made for reporting on

-the project through blog posts, network auditing of tracking to ensure

-leakage is not occurring.

-    </p>

-

-    <p>

-Useful links and documentation to study:

-    </p>

-

-    <ul>

-      <li><a href="https://gitweb.torproject.org/orbot.git">Orbot</a></li>

-      <li><a href="http://developer.android.com/reference/android/net/VpnService.html">Android VPNService API</a></li>

-      <li><a href="https://github.com/guardianproject/OrbotVPN">Existing work on Orbot VPN</a></li>

-    </ul>

-

-    <p>

-Applicant should have the ability to build Orbot application from

-source using Android SDK and NDK tools. A solid understanding of IP

-routing, iptables, netfilter and VPN protocols would also be very

-helpful. The ability to use Wireshark or other network monitoring

-software to test and verify solution is something that can be taught,

-but if you already know how, bonus! Finally, understanding how the

-exiting Tor software can be used with various transparent proxying

-configurations is a good first step to understanding this problem.

-    </p>

-    </li>

--->

-

     <a id="improveTorTestCoverage"></a>

     <li>

     <b>Improve test coverage in Tor</b>

@@ -1420,106 +1371,6 @@ tampering.  Third, unit tests should be added for existing and new code

 in order to make the code base more robust.

     </p>

     </li>

-<!--

-    <a id="improveStegotorus"></a>

-    <li>

-    <b>Improve Stegotorus</b>

-    <br>

-    Effort Level: <i>Medium</i>

-    <br>

-    Skill Level: <i>Medium</i>

-    <br>

-    Likely Mentors: <i>vmon</i>

-    <p>

-Stegotorus is a fork of obfsproxy which helps developers to write more intelligent pluggable transports which can hide easier from deep packet inspector (DPI) system.

-    </p>

-

-    <p>

-For example, Stegotorus is equipped with a "chopper module" which takes care of following aspects:

-    </p>

-

-    <ol>

-      <li>It randomize the packet size so it is harder for the DPI system to detect the traffic base on the distribution of the packet size.</li>

-      <li>It makes sure that it only handle as much (or as less) information as the transport module can handle.</li>

-      <li>Chopper is equipped with it is own acknowledge/retransmit protocol. If the censor trying to disturb the connection by dropping or disturbing some of packets, it can recover the data by sending them many times.</li>

-    </ol>

-

-    <p>

-More importantly, Stegotorus is coming with its own HTTP transport module which obfuscates Tor or any other encrypted traffic in HTTP content such as Javascript code or images. HTTP transport module is also written in a way which new module developers can easily add new obfuscation modules for new contents or improve current obfuscation algorithms without the need of dealing with networking aspect of the problem.

-    </p>

-

-    <p>

-Stegotorus is written in C++. you can find the latest code <a href="https://github.com/zackw/stegotorus/tree/tor-improve">here</a>.

-    </p>

-

-    <p>

-In this regard, Stegotorus is offering one of the most complete and sophisticated platforms for writing stealthy pluggable transports.

-    </p>

-

-    <p>

-If you know C++ and interested in Stegotorus and excited about battling censorship, there are many ways that you can contribute to Stegotorus. Here are few important tasks. Your proposal might contain a good number of them:

-    </p>

-

-    <ol>

-      <li>Currently Stegotorus handshake is encrypted using the symmetric secret key of the Stegotorus bridge. However, we would like to implement a totally random handshake and considering that some transports suffer badly from "bandwidth shortage", our best choice currently is to implement <a href="http://elligator.cr.yp.to/">this algorithm</a>.</li>

-      <li>Stegotorus defense against active probing is to authenticate the header of the received packet. If the authentication fails Stegotorus turns into a transparent proxy. The capability of Stegotorus as a transparent proxy needs improvement and further testing.</li>

-      <li>Stegotorus has a new framework for writing Steg module. However some of the Steg modules (PDF, SWF and JS) are written in the old framework, we need to refactor their code in the new framework.</li>

-      <li>As writting new Steg modules in python is easier and safer, it is desirable to write an Steg module interface for Stegotorus which can accept and interact with Steg modules written in python/cython.</li>

-      <li>To make detection of anomalies in the traffic harder, Stegotorus hands a noise-to-signal ratio to each Steg modules. Steg modules' algorithms need to use more intelligent way of embedding to use this ratio.</li>

-      <li>Stegotorus has several parameters to tweak its behavior. Currently all these parameters are given in command line. We would like to have a config file to store these parameters as an alternative method.</li>

-      <li>The general security of the code needs to be reviewed and audited for buffer overflow, memory leak etc.</li>

-      <li>Steg modules for new file format for the HTTP transport are always welcome to reflect the actual traffic of the Internet.</li>

-      <li>Packaging Stegotorus for windows.</li>

-      <li>There is a parallel efforts to improve Stegotorus at SRI. We would like to merge the useful feature developed by SRI in our branch of Stegotorus.</li>

-      <li>Stegotorus needs to support SOCKS protocol to be able to receive the initial parameters from Tor through SOCKS handshake.</li>

-    </ol>

-

-    <p>

-You can find a list of open issues concerning Stegotorus <a href="https://trac.torproject.org/projects/tor/query?status=accepted&status=assigned&status=needs_information&status=needs_review&status=needs_revision&status=new&status=reopened&component=Stegotorus&order=priority">here</a>.

-    </p>

-

-    <p>

-You also can think of lots of other awesome creative ways of improving Stegotorus and include those in your proposal.

-    </p>

-    </li>

--->

-

-<!--

-    <a id="newBridgedbDistributor"></a>

-    <li>

-    <b>New BridgeDB Distributor</b>

-    <br>

-    Effort Level: <i>Medium</i>

-    <br>

-    Skill Level: <i>Medium to High</i>

-    <br>

-    Likely Mentors: <i>isis, sysrqb</i>

-    <p>

-BridgeDB is a Twisted Python system which runs a number of servers, in order

-to distribute Tor bridge relays to users in potentially censored regions. Each

-of BridgeDB's Distributors uses some unique channel to communicate bridge

-addresses to users, currently there is an <a href="https://bridges.torproject.org">

-HTTPS Distributor</a>, and an Email Distributor. This project would involve

-designing and creating a new Distributor for BridgeDB. Some ideas for new

-Distributors:

-    </p>

-

-    <ul>

-      <li>A Twitter bot which interacts with Chinese and Farsi speaking Twitter users through PMs.</li>

-      <li>A distributor which uses XMPP+OTR to give bridges to users.</li>

-    </ul>

-

-    <p>

-It's helpful if you already have some knowledge of Twisted. As part of your

-application, please submit a design for a Distributor, as well as supply a

-patch for a ticket which demonstrates knowledge of Twisted and Python ―

-preferably for BridgeDB, see the

-<a href="https://trac.torproject.org/projects/tor/query?status=!closed&keywords=~bridgedb-gsoc-application">

-'bridgedb-gsoc-application' Trac tag</a> for some examples of good tickets to

-try, or contact isis or sysrqb on IRC to ask for ticket suggestions or advice.

-    </p>

-    </li>

--->

 <!--

     <a id=""></a>

     <li>