Slashdot Mirror

← Back to Stories (view on slashdot.org)

Launching Anonymous Attacks Using the Tor Network

Posted by Hemos on Monday July 11, 2005 @03:00AM from the wait-you-mean-people-aren't-all-nice dept.

An anonymous reader writes "Nitesh Dhanjani over at O'Reilly Network describes how malicious users can launch attacks over the Internet anonymously using the Tor network. Looks like the flip side of the Tor project is that it allows anyone to launch network scans and exploits anonymously. Great, just what we need now."

3 of 19 comments (clear)

Min score:

Reason:

Sort:

Re:Astroturf by TripMaster+Monkey · 2005-07-11 03:14 · Score: 2, Interesting

I'd hardly accuse O'Reilly of astroturfing...besides, he spelled out the process in great detail. If you have any doubts, you can just replicate his experiment yourself.

--
____
~ |rip/\/\aster /\/\onkey
Re:"Great, just what we need now." by Anonymous Coward · 2005-07-11 03:52 · Score: 1, Interesting

Tor is also good for salting the data on phishing web sites. I have a simple Python script which repeatedly posts, through a Tor proxy, randomly generated but seemingly real email address, passwords, etc. to the phish sites, making it seem as though postings are coming from all over the Internet, and making it difficult for the phisher to just toss the data that comes from a certain IP. Hopefully, it frustrates the efforts of phishers, even if it's just a little bit.
Re:An unfortunate inevitability by stevey · 2005-07-11 07:59 · Score: 2, Interesting

Well you can do what Slashdot itself does - which is deny users of Tor from posting comments.

A sad reflection on the malicious actions of a few outweighing the positive aspects of privacy and encryption on the many.