Raise MaxCircuitDirtiness for Tor Browser to 2 hours
I just realized that we forgot the second part of #5752 (moved) for 4.5-alpha-1, which was to remove the 10 minute circuit lifetime expiry. There are several reasons why we want to do this:
- Websites often break when Tor suddenly changes IP address on them. Sometimes, they log you out. Sometimes, they will suddenly change their language. Sites that use captchas will make you solve a new one at this point as well, or your new exit IP will simply suddenly be banned.
- Due to tracking cookies, there is much less of a privacy reason to rotate exit IP addresses every 10 minutes. In fact, doing so just exposes you to more of the network, increasing the chance of that session getting exposed to a malicious/compromised/surveilled exit.
- Users who want new circuits for their websites should use "New Identity", which gives them this, and also prevents tracking.
- It will cause Tor Browser to use less circuits (which was a major concern back before ntor when #5752 (moved) was first proposed).
Since this might be a controversial change, I suppose it is best we didn't just roll it out. Does anyone have any serious reasons why we shouldn't do this?