Need to re-consider the desirable traffic pattern.
The only considerations currently set in stone are
- Traffic generated by BASH Haystack Generator shouldn't be immediately identifiable (from outside the tunnel) as being from that source.
- There should be an option to generate random traffic in both directions (i.e. upstream and downstream)
- Traffic needs to look sufficiently like genuine use that it's indistinguisable (i.e. completely random is bad)
Issues were encountered (BHAYSTACKG-2
) with multiple runs overlapping, leading to exhaustion of File Descriptor limits on the remote server.
Whilst some overlap is probably still desirable, need to re-asses the base assumptions about what the traffic pattern should be