Slashdot Mirror
Tor Users Urged To Update After Security Breach
An anonymous reader writes "If you use Tor, you're cautioned to update now due to a security breach. In a message on the Tor mailing list dated Jan 20, 2010, Tor developer Roger Dingledine outlines the issue and why you should upgrade to Tor 0.2.1.22 or 0.2.2.7-alpha now: 'In early January we discovered that two of the seven directory authorities were compromised (moria1 and gabelmoo), along with metrics.torproject.org, a new server we'd recently set up to serve metrics data and graphs. The three servers have since been reinstalled with service migrated to other servers.' Tor users should visit the download page and update ASAP."
Anyone else find it so funny that a news story about anonymity is suggested to slashdot by anonymous coward?
I think it's the best form of joke... one with an epic amount of unexpected expectedness.
post
Crap, I should have posted that through Tor; now Slashdot knows my ip address :(
quoi?
They feared that it could be used to suppress protest or support unpopular rule.
Anyone else find it so funny that a news story about anonymity is suggested to slashdot by anonymous coward?
I think it's the best form of joke... one with an epic amount of unexpected expectedness.
If you think that's funny, just think...
Every Anonymous Coward posting about this article will be an Anonymous Coward posting about an Anonymous Coward's anonymity story. A story by an Anonymous Coward for Anonymous Cowards about Anonymous Cowards. Anonymous anonymous anonymous.
The problem with Tor is that there's no way to detect compromises -- every node on the network could be compromised and you'd never know. Authors of botnets have greater anonymity than we do -- ironically because it's run by a central authority. An illegal and immoral one, yes, but one that comes with a measure of anonymity. Few botnet authors are actually caught even with the most primitive security methods. They don't even use encryption and they often can't be found...
#fuckbeta #iamslashdot #dicemustdie
Roger's entries to date on the subject (excluding first page linked within /. summary):
(this is for those who are too lazy to page through mailing list threads, this post is
missing other individuals replies as well as future replies from Roger and others)
http://archives.seul.org/or/talk/Jan-2010/msg00165.html
Here are some more technical details about the potential impacts, for
those who want to know more about Tor's innards:
----- #1: Directory authority keys
Owning two out of seven directory authorities isn't enough to make a new
networkstatus consensus (you need four for that), but it means you've
only got two more to go. We've generated new v3 long-term identity keys
for these two authorities.
The old v3 long-term identity keys probably aren't compromised, since
they weren't stored on the affected machines, but they signed v3 signing
keys that are valid until 2010-04-12 in the case of moria1 and until
2010-05-04 in the case of gabelmoo. That's still a pretty big window,
so it's best to upgrade clients away from trusting those keys.
You should upgrade to 0.2.1.22 or 0.2.2.7-alpha, which uses the new v3
long-term identity keys (with a new set of signing keys).
----- #2: Relay identity keys
We already have a way to cleanly migrate to a new v3 long-term identity
key, because we needed one for the Debian weak RNG bug:
http://archives.seul.org/or/announce/May-2008/msg00000.html
But we don't have a way to cleanly migrate relay identity keys. An
attacker who knows moria1's relay identity key can craft a new descriptor
for it with a new onion key (or even a new IP address), and then
man-in-the-middle traffic coming to the relay. They wouldn't be able to
spoof directory statements, or break the encryption for further relays
in the path, but it still removes one layer of the defense-in-depth.
Normally there's nothing special about the relay identity key (if you
lose yours, just generate another one), but relay identity keys for
directory authorities are hard-coded in the Tor bundle so the client
can detect man-in-the-middle attacks on bootstrapping.
So we abandoned the old relay identity keys too. That means abandoning
the old IP:port the authorities were listening on, or older clients will
produce warn messages whenever they connect to the new authority. Older
Tor clients can now take longer to bootstrap if they try the abandoned
addresses first. (You should upgrade.)
----- #3: Infrastructure services
Moria also hosted our git repository and svn repository. I took the
services offline as soon as we learned of the breach -- in theory a clever
attacker could give out altered files to people who check out the source,
or even tailor his answers based on who's doing the git update. We're
in pretty good shape for git though: the git tree is a set of hashes
all the way back to the root, so when you update your git tree, it will
automatically notice any tampering.
As explained in the last mail, it appears the attackers didn't realize
what they broke into. We had already been slowly migrating Tor services
off of moria (it runs too many services for too many different projects),
so we took this opportunity to speed up that plan. A friendly anonymous
sponsor has provided a pile of new servers, and git and svn are now up
in their new locations. The only remaining Tor infrastructure services on
moria are the directory authority, the mailing lists, and a DNS secondary.
----- #4: Bridge descriptors
The metrics server had an archive of bridge descriptors from 2009.
We used the descriptors to create summary graphs of bridge count and
bridge usage by country, like the ones you can see at
http://metrics.torproject.
now the cia + barack obama know i was browsing cp
How do you update a Tor SF paparback book?
mmm, 2/3, did you just pull these numbers out of your ass or do you have anything to back them up?
In other words [citation needed]
Not that I'm defending pedophilia, but the fact that you're conflating pedophiles and child molesters makes me suspect your statistics.
I mean. That's where I'd go fishing for people trying to communicate secrets,
if I was them.
Now I don't want to spread paranoia, but
did you know that the patent on Onion Routing was filed by the US Department of the Navy?
Look it up.
Remember kiddies. Always use your own encryption layer.
Where are we going and why are we in a handbasket?
There are several indexes and even a wiki available in tor land that provide lists of sites hosted there, a look at those will tell anyone who wants to know exactly how many sites there are devoted to the tastes of child molesters (unlike more niave slashdotters, I make ZERO distinction between kiddy diddlers and "pedophiles" -they are one and the same).
You will have to look for yourself, as I believe it's immoral to aid or abet child molesters in their endevors, so I will not divulge the addresses where they are able to find links to pedophiliac content.
Sounds like anonymity projects are suffering the same problem as encryption in general -- it's too hard to use unless you're pretty sure you have a need for it.
With the casual farming of information that goes on by Internet ad networks, the lack of security of public Wi-Fi, and the push for deep packet inspection by ISPs, I think we've reached a point where attacks on the privacy of innocent users justifies a need for average folks to have access to these sorts of products (and associated education.)
But until it's as simple as hitting a button in Firefox to use Tor, of course it's only going to be the enthusiasts and scumbag fringes that'll put the time into researching and securing their privacy online.
It still seems this breach is unrelated to Tor itself. To be clear, it doesn't seem that anyone specifically attacked our servers to get at Tor. It seems we were attacked for the cpu capacity and bandwidth of the servers, and the servers just happened to also carry out functions for Tor.
* Does this mean someone could have matched users up to their destinations?
No....
* Does this mean someone could have learned more about Tor than an ordinary user?
Since our software and specifications are open, everyone already has access to almost everything on these machines...
Why is this modded troll? This is a valid notion.
I spent a bit over a year working with the FBI gathering information on a pedophile ring who was using one of our servers (to coordinate picture trading going on in Asian image board sites). Neither agents' opinions, the content gathered, nor the actual research I've seen, agree with your unsupported assertion that "they are one and the same". Though, two troll paratrooper points for accusing those who disagree with you of naivete. Good show, golf claps all around.
I also don't know to what extent the "pedo" content in actual prepubescent kids, versus underage pubescent ("jailbait"). No, I don't really want to know either. Anyway, ephibophilia is illegal, but arguably medically normal, and ephibophiles and pedophiles make up separate populations.
crapflooding.
Hi,
How did you collect your statistics when Tor is decentralized? Sure you could analyze the outbound traffic on a exit node but I doubt that this would be enough of a sampling to extrapolate a meaningful conclusion. Since you offer no supporting evidence your claim is irrelevant to the discussion.
I also do not think that the number of child molesters could be large enough to represent a "vast majority" because I doubt the original content producers would distribute a such a high risk material for free. It is much more likely that pedophiles are distributing the material to other pedophiles. I think that it is important to note the difference because while I find either appalling I'd rather have them fapping to "old child pornography" instead of creating a demand for new material and reducing the profit margins of the people that are actually doing these horrible things to children. The lesser of of two evils is still evil but we don't live in a idealistic world.
Unfortunately freedom has it's costs.
the chinese did it.
Because it's not? Why is everyone commenting here so fucking stupid. If you want to know why, read how Tor works, what was actually compromised and for what purposes.
In short, people attracted to children will rape them? A bit like saying all men will rape women no? But that's not a perfect analogy, you can have sex with a man or woman without too much difficulty, whereas a pedophile can only masturbate. How about, would all slovenly, unattractive, misanthropes, who've zero chance of getting sex resort to rape? I rather doubt it, and even though pedophilia disturbs me, I don't think the sexual drive of that group is somehow stronger than your average male or female.
"Tor land"? I though Tor simply let you access the general net anonymously and didn't have any special sites only available to it like Freenet. Feel free to correct me if I'm wrong.
CLUE:
Tor is not a "place", it's a method. Tor contains no destinations, it's just a way of routing traffic to destinations which exist independently of tor. Put another way, there's no such fucking thing as "tor land", you FUD-spurting troll.
Attacking Tor at the Application Layer
http://www.defcon.org/images/defcon-17/dc-17-presentations/defcon-17-gregory_fleischer-attacking_tor.pdf
https://media.defcon.org/dc-17/video/DEFCON%2017%20Hacking%20Conference%20Presentation%20By%20Gregory%20Fleischer%20-%20Attacking%20Tor%20and%20the%20Application%20Layer%20-%20Video%20and%20Slides.m4v
https://media.defcon.org/dc-17/video/DEFCON%2017%20Hacking%20Conference%20Presentation%20By%20Gregory%20Fleischer%20-%20Attacking%20Tor%20and%20the%20Application%20Layer%20-%20Slides.m4v
https://media.defcon.org/dc-17/audio/DEFCON%2017%20Hacking%20Conference%20Presentation%20By%20Gregory%20Fleischer%20-%20Attacking%20Tor%20and%20the%20Application%20Layer%20-%20Audio.m4b
Sniff Keystrokes With Lasers/Voltmeters - Side Channel Attacks Using Optical Sampling Of Mechanical Energy And Power Line
Leakage:
http://www.defcon.org/images/defcon-17/dc-17-presentations/defcon-17-barisani-bianco-sniff_keystrokes.pdf
http://www.defcon.org/images/defcon-17/dc-17-presentations/Andrea_Barisani-Daniele_%20Bianco/defcon-17-barisani-bianco-sniff_keystrokes-wp.pdf
https://media.defcon.org/dc-17/video/DEFCON%2017%20Hacking%20Conference%20Presentation%20By%20Andrea%20Barisani%20and%20Daniele%20Bianco%20-%20Sniffing%20Keystrockes%20with%20Lasers%20and%20Voltmeters%20-%20Video%20and%20Slides.m4v
Router Exploitation
http://www.defcon.org/images/defcon-17/dc-17-presentations/defcon-17-fx-wp.pdf
https://media.defcon.org/dc-17/video/DEFCON%2017%20Hacking%20Conference%20Presentation%20By%20FX%20-%20Router%20Exploitation%20-%20Video%20and%20Slides.m4v
https://media.defcon.org/dc-17/video/DEFCON%2017%20Hacking%20Conference%20Presentation%20By%20FX%20-%20Router%20Exploitation%20-%20Slides.m4v
Unmasking You
http://www.defcon.org/images/defcon-17/dc-17-presentations/defcon-17-abraham-hansen-unmasking_you.pdf
Tactical Fingerprinting Using Metadata, Hidden Info and Lost Data
http://www.defcon.org/images/defcon-17/dc-17-presentations/defcon-17-alonso-palazon-tactical_fingerprinting.pdf
Down the R
I don't know where to find good citations - but you can research easily enough.
Download not just TOR, but I2P, freenet, anonnet - search for more if you like. You WILL BE exposed to child porn. No questions asked, you'll be exposed.
It's safe to say that 2/3 to 3/4 of all the sites out there are trash that you don't even want to see. But - there are also some interesting things that are NOT pornography.
You can go explore, or not. It's slow, it's aggravating because all the CP gets in the way, there's not a whole LOT OF good stuff to find, but, go explore all the same. Make sure you read the documentation - you don't want to broadcast your IP across the dark web, with all your personal details. You think the regular internet is bad? LMAO
"Windows is like the faint smell of piss in a subway: it's there, and there's nothing you can do about it." - Charlie Br
IMHO sending a message inside a birthday card draws a LOT less attention than using obscure and suspicious looking encryption software. But thats just my opinion.
Only the State obtains its revenue by coercion. - Murray Rothbard
Anyway, ephibophilia is illegal, but arguably medically normal, and ephibophiles and pedophiles make up separate populations.
No, it's not illegal. For that matter, neither is pedophilia. ACTING on ephibophilia or pedophilia is illegal.
Mmmm, yes, free.
And you will never, in a million years, detect the compromised hardware in those machines.
The only way for tor (or wikileaks or other dangerous-to-the-authorities service) to buy hardware, is anonymously. If someone wants to donate servers, have them sell the servers and give you the cash.
FATMOUSE + YOU = FATMOUSE
Unfortunately, the online anonymity mechanisms all suffer from a fundamental problem:
Since, in order to get your packets from point you to point wherever and back, some number of untrusted machines have to know your IP and your desired destination(at a minimum, your destination gets to know, more typically, a fair few machines controlled by one or more ISPs will be involved) all the anonymity mechanisms attempt to break up the round-trip into chunks too small to be useful. It is always going to be slower, and less efficient(ie. less useful data transferred over a pipe of given capacity) to have your packets follow an intentionally tortuous path intended to make following them hard than it will be to be open about your intentions and let the usual mechanisms for efficient routing take over.
This isn't to say that it isn't worth it, especially for whatever qualifies has "high risk activity" in your jurisdiction or just to give the marketing bastards the finger; but it will always be a tradeoff in ways that a nice frontend and easy config for the noobs will never solve.
"A friendly anonymous sponsor has provided a pile of new servers, and git and svn are now up in their new locations."
Am I the only one to find this suspiciously timely? Did the "anonymous sponsor" guarantee that none of the onboard chips/chipset were made in China or tampered with?
I think I just stopped using Tor.
paros?
Duh!
Caveat Utilitor
CLUE-CLUE TRAIN coming through: .onion pseudo-TLD.
See the
You fail it. ("it" is knowing WTF you're talking about, fag-ass.)
Technically, it can't be. But since most of the exit points are pretty well known, it's not all that hard. If more people made themselves exit points, rather than just taking advantage of the network, that problem would go away.
I've tried Slashdot. It's been a matter of switching exit points until you find one that isn't forbidden. Google is really on top of it though. I suspect they may have a tie-in with the network map, so they know the exit points as they come and go.
Serious? Seriousness is well above my pay grade.
I disagree.
If you happen to stumble upon some questionable content, that's one thing. However, it's quite another to be on the constant pursuit of it. The way I see it, the later is generating a market demand. While that person isn't doing anything illegal from a physical standpoint, I still view them as an accessory to a crime.
Life is not for the lazy.
I dislike how the second party gets abused though and don't say that they can consent to the pictures. You leave the child pretty twisted and the molesters don't care. It is just not fair to the child. It might not be fair to the molester as he can't help it, but it is not a victim less act. What they need is help understanding and managing. There is just so much social taboo around it that it is a real struggle for them.
People with sexual urges will eventually create an opportunity act on them, and readily available pornographic content simply encourages them by giving them validation and a sense of moral acceptance.
Hmm... then how about homosexuality? It's not hard to find stories of people who denied attraction to the same sex their whole life in order to avoid being socially stigmatized.
As for the effects of pornography, does masturbating calm your sexual urges, or does it inflame them?
This is somewhat tangential, but there is illustrated porn where just about any deviance can be catered to without harming a minor. Actually molesting a child is wrong of course.
Do try harder. As a member of slashdot you should appreciate the need to coldly analyze all things even if they are distasteful.
While you have a perfectly valid point, your comment defending pedophiles now stands completely without context, as pretty much all of comments leading to it remain 0-score.
I'm not sure whether to congratulate your courage in posting with your account or assume it was an accident and offer condolences.
Running an exit node is very, very, very risky.
On the other hand, putting services like Slashdot or Google on as hidden services, it might reduce the demand for the exit nodes.
Has any major company done this yet?
I used TOR yesterday, here, several times but for a good reason. What the hell are you talking about?
Anyway, ephibophilia is illegal
Well that's quite surprising to me, since ephebophilia is a state of mind, and last I checked, there is no such thing as an illegal thought.
May be they trying to enter adult content industry...
People who express extreme moral outrage are, more often than not, doing so for two reasons: to divert attention from their own proclivities, and to assuage their own guilty conscience. So... When's the last time you touched?
I think all of us here agree that pedophilia is abnormal, and that child abuse, whether sexual or not, is horrifying. But to draw a complete equivalence between the two just shows that you have no ability to think logically. Irrationality will not help us to reduce the prevalence of this problem. If being attracted to children makes one a child rapist, then being attracted to women makes you a rapist. Are you attracted to women? I guess you're one sick piece of shit then.
Ultimately, it's a signal-to-noise problem. One government's signal is another government's noise.
If you're a cypherpunk, Freenet is a way of helping Chinese human rights activists hide amongst the communications of thousands of North American pedos. Freenet is also a way of helping North American pedos hide amongst the communications of thousands of Chinese human rights activists.
Where the inventor of Freenet - and other strong (and Tor doesn't even claim to be particularly strong) anonymity systems - got it wrong, was the assumption of a "sane" legal system. In the legal systems in the real world, "plausible deniability" means that governments can categorize Freenet users as either counterrevolutionaries or pedos, whichever gets their agents promotions and improves their conviction rates.
I remember experimenting with Freenet several years ago. I'm neither a pedo nor a human rights activist, but I live in a surveillance state and I know a no-win situation when I see one. (The big lesson I learned that weekend? If you want to get magnetic media above its curie point, thermite's a great way to start a campfire, but don't roast any marshmallows over it.)
tor also lets you run an (anonymous) file server.
Do you even lift?
These aren't the 'roids you're looking for.
Wait... Anyone can be a TOR node and it's still secure.
TOR data is very encrypted.
It doesn't matter if the hardware or software is compromised, it's still secure because a TOR node is just one node in a chain of encrypted nodes. You encrypt your data 5 times if you're sending it through 5 nodes.
Each node takes off one layer of encryption and forwards the still encrypted data to the next node. If any intermediate nodes (2 3 4 in our 5 node example) are compromised (in software or hardware), they can not see the message in plain text, or determine the originating IP or destination IP of the traffic.
If the first node is compromised it can see your source IP, but not the destination IP or any part of the message (it's still encrypted.)
If the exit node is compromised it can see the destination IP, and clear text message, but not the source IP.
These multiple layers of encryption mean that if any one node is compromised the system is still very secure.
Taking off a layer of encryption at each router is like peeling an onion... hence, "The Onion Router".
(this is an oversimplified explanaion -- if you're talking compromised code repositories, viruses and trojans are usually not delivered as source code, the tampering would be evident.)
Depends on your budget and how many consumer/residental ISP accounts, each of which runs one customized exit node, you can buy.
If all you can afford is $1.05, you're playing the wrong game.
If you're a state actor, an entire network could be effectively compromised for less than the rounding error on a line item on your budget.
The only way the cypherpunks can compete with those kinds of budgets is to go complteley black-hat, and start distributing trojans that - rather than adding compromised machines to spamming botnets - add the compromised machines to anonymity botnets.
As a white-hat, that's not a compromise I'm willing to make. (The only smudges on my white hat are from pirated music and the occasional bit of mainstream pr0n, all readily available - and tolerated by my government - on the non-anonymous networks.)
Sorry, meant to say ephibophiliac content, not ephibophilia itself. You can fantasize about all the jailbait you want, you just can't have naked photos of 17 year olds.
Ideally, everyone that runs a client is an exit node too. But, much like an open AP on your network, when the police come knocking at your door, just saying "But, I was just connected to Tor" isn't going to be much of a defense. It may work in court, but you may be waiting a long time for that day to come.
Serious? Seriousness is well above my pay grade.
I doubt that FBI, NSA, CIA, GRU, etc. all share their nodes with each other. As such, it is reasonable assumption that each node only belongs to one (or two at most) intelligence agency.
Now, if there are enough of such agencies, each controls so small partition of the nodes that it isn't a problem. On the other hand, if one agency has a wide control over the network, it means that the other agencies have very limited control. That leads us to a situation where Tor is useful against all but one agency, which isn't that shabby either.
There are some problems - it might be that all nodes in russia are controlled by GRU (though I really doubt CIA would let that happen) - but most of such are negated as long as the routing goes through nodes in several countries.
So, how is life in the UK these days?
I wish the holier than thous behind the Tor movement would stop with their outrageous and indefensible claims about the protections Tor allegedly provides.
I tried to have this discussion with, among others, people who've made "names for themselves" traveling from conference to conference blustering about how Tor is making the Internet safe for unpopular opinions in places where an unpopular opinion can get you disappeared right quick (hello China)... shouted down every time because it's not a POPULAR point of view.
I see that I'm not the only one in this discussion with concerns. Thank god things are changing.
Whoever these people you have met traveling from conference to conference are not the authors of tor:
# tor --help
Jan 21 22:48:35.191 [notice] Tor v0.2.1.22. This is experimental software. Do not rely on it for strong anonymity. (Running on Linux x86_64)
Copyright (c) 2001-2004, Roger Dingledine
Copyright (c) 2004-2006, Roger Dingledine, Nick Mathewson
Copyright (c) 2007-2009, The Tor Project, Inc.
tor -f [args]
See man page for options, or https://www.torproject.org/ for documentation.
Attacking Tor at the Application Layer
Nothing really new here, just ordinary application attack vectors. Change habits accordingly to counter these exploits. Most scenarios assume application is FireFox/HTTP.
Sniff Keystrokes With Lasers/Voltmeters - Side Channel Attacks Using Optical Sampling Of Mechanical Energy And Power Line Leakage:
Assumes physical location has already been found, not really a valid assumption in most scenarios. Assumes PS/2 HIDs etc. and as the presentation says can be defeated by implementing TEMPEST protection.
Router Exploitation
Presentation only covers Cisco IOS issues, thus only applicable in environments which deploy them. Even then, some of the issues outlined aren't that relevant in regards to the use Tor.
Unmasking You
Again, nothing new. Change your habits accordingly in regards to the configuration of your system. Encrypt your connections using proper effective mechanisms for key distribution etc. which are relevant to what you are doing.
Tactical Fingerprinting Using Metadata, Hidden Info and Lost Data
Yet again nothing new, use open and minimal formats and strip your metadata. This isn't even a problem with Tor itself.
Down the Rabbit Hole: Uncovering a Criminal Server
I don't even see how many of the issues raised here are directly relevant to Tor, the issues raised have available counter measures anyway. Change your habits accordingly.
So basically, the issues you've raised are either already known with counter-measures available or aren't even directly relevant to Tor. Tor is a tool, it is said repeatedly that it doesn't automagically protect you, you have to use it correctly.
By the way, Lizard says "Hi" ^.^
This is why i said "Tor movement" not "authors of Tor"
It doesn't matter. The innocent, non-techies are not hearing from "the authors of Tor". They're hearing from others who are running around promoting it as the salvation of free speech in non-free places... and they are believed.
TOR apologists, no fair modding down these comments just because you don't like them.
I wish the holier than thous behind the Tor movement would stop with their outrageous and indefensible claims about the protections Tor allegedly provides.
I tried to have this discussion with, among others, people who've made "names for themselves" traveling from conference to conference blustering about how Tor is making the Internet safe for unpopular opinions in places where an unpopular opinion can get you disappeared right quick (hello China)... shouted down every time because it's not a POPULAR point of view.
I see that I'm not the only one in this discussion with concerns. Thank god things are changing.
Mod sibling post insightful.
If Torbutton installed it and verified it was working correctly that would really help it to spread. Still, the bundles help.
The bigger problem is that Tor is hardly deniable. Your traffic might be secure, but in many circumstances the fact that you are sending secure traffic is far more interesting. Given the right circumstances, that enough is sufficient for the state to use rubber hose cryptanalysis...
[FUCK BETA]
I digress. When "something" is freely available,free being the operative word,then much like a 'free' newspaper, it's always self supporting.Usage is driven by chance,and readership somewhat mercurial. Moreover,suggesting that someone is an "accessory to a crime" for viewing said 'questionable content' is flawed. Example: A woman is raped in a public park.There were 200 witnesses who walked past, but chose not take the matter any further. There was however,a security camera present that captured the said offense, inclusive of the 200 witnesses who failed to act. All 200 witnesses have been identified by the CCTV and are now all "an accessory to a crime".
Yes, but at the top is some form of directory service. If you compromise the majority of those servers you can create a new network consensus, and direct everyone to route through tor1,tor2...torX.nsa.gov. Or some suitable set of apparently random international network of nodes set up for the purpose. The layers don't work if the entire onion is rotten.
Live today, because you never know what tomorrow brings
"A friendly anonymous sponsor has provided a pile of new servers, and git and svn are now up
in their new locations"
I read this to mean that tor are hosting git and svn on the new, anonymously-donated servers. I expect that if they were hardware-compromised, that could be used, in turn, to compromise the source-repositories. Please correct me if I'm wrong tho...
Having said all that - I'd also expect a project like tor to be pretty careful with security! Also, it's quite possible that although the servers were anonymously-donated, they may still have been sourced by the tor project - it's hard to imagine a guy in a trench-coat and dark glasses knocking on their door, handing them a server before fading into the shadows, and them welcoming it with open arms!
This is torrible news! The torror...
You don't seem to have read the GGP post at all.
It lists plenty of venues of attack for a suficiently willing and knowledgeable attacker which state agencies would be.
I wouldn't so easilly dismiss attacks delivered via source code if I was you: the GP was talking about attacks by state security services - these guys usually employ full time some pretty clever people who can usually make their own code they're no just a bunch of script kiddies downloading tools from the Internet (although from the Google attacks I suspect that, like in many other things, the Chinese went for quantity over quality and a lot of their "State Hackers" are little more than script-kiddies). Understanding and subtly altering a code base is not that hard if you're an good and experienced programmer.
State agents thus have both the resources and the willingness for impersonating a friendly interested party, providing free machines that are actually compromised at the BIOS or even hardware level and subtly compromise TOR via the source code once the Source Control repository gets put in one of the trojaned machines - some of them might even have a wise enough leadership that they're willing to go slowly and carefully infiltrate and take over the TOR system using techniques like this.
A better proxy VPN?
If the exit node is compromised it can see the destination IP, and clear text message, but not the source IP.
So, collect enough packets at a compromised exit node and you can build a usage pattern with possibility of identification? Using Tor to check email or blog from oppressed nations just looked a little less appealing.
Finally had enough. Come see us over at https://soylentnews.org/
I'm not sure if you're not misunderstanding the purpose of Tor. Well, either that, or I am. :)
In any case, the purpose of Tor is not encryption but anonymity. This bears repeating: unless you take additional steps to encrypt the data sent through Tor, it WILL be plainly readable at some point. Intermediate nodes won't be able to decrypt it, obviously, but the exit node will see it, for obvious reasons.
The only thing the exit node doesn't know is who actually made the request, although this could quite possibly be inferred from the data being sent.
You should ALWAYS encrypt data sent through Tor.
While that person isn't doing anything illegal from a physical standpoint, I still view them as an accessory to a crime.
That's great for you, but whether something is illegal doesn't depend on your personal opinion: it depends on what the law says.
FWIW, you seem to be missing the GP's (not me, I'm a different AC) point, anyway. What he said was merely that being sexually attracted to children, or non-adult teenagers, is not in itself illegal.
Using tor to transmit anything unencrypted is a very DUMB thing. You have to understand that between the exit node and the target server, all traffic is done in the same fashion it would be done between you and the target server if you didn't use tor. If there is no inherent encryption (like https or ssh), it will NOT be encrypted between the exit node and the server.
In other words, it is trivial for someone who wants to sniff passwords to establish an exit node and just collect packets.
tor is NOT an encryption tool. It is a tool to mask your whereabouts, to give you the means to access information your government does not want you to see. It's a tool to avoid prosecution when you access "illegal" information (read: information your government deems illegal). It is NOT a tool to increase your security against MITM sniffing. Quite the opposite.
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
The links are not very informative about what allowed the breach to happen. Was a security model vulnerability? man-in-the-middle attack? buffer overflow?
Depends where you live and what you know. There are quite a few places that have laws regarding your responsibility to aid those in need. I believe in Wisconsin it only applies specifically to people with emergency medical training but there is some group that is under a legal obligation to help. I personally don't agree not only because I don't think an unwilling population makes the best responder but also because I think the legislation of morality is a slippery slope.
That being said, especially after the event in Oakland last year where the 15 year old was gang raped for two hours out side of a school dance and no one so much as called the police I wish a stronger sense of moral obligation existed in some people.
Unless you subscribe to the theory of many that it creates an atmosphere encouraging to the exploitation of real children.
Of course I don't think that's anymore logical than saying videogames contribute to a society more accepting of stereotypical villains with bad voice acting.
The price of freedom isn't vigilance in this time and age, it's having to deal with unpopular content.
Is tor used by people who want to circumvent laws for whatever reason? Yes. Duh. Basically that's what it was created for. We deem it positive that tor allows dissidents to avoid their laws concerning the freedom of speech, but we don't deem it positive that it also allows the circumvention of our laws. That's very human, but also quite a bit of a double standard.
I hope /. is a bit above the killer arguments of "think of the children" (honestly, if you think of the children all the time, you're prolly a pedo yourself) and we're able to look at it from a bit of a detached position. Because that's what we have to deal with here. Basically swapping child porn in the US is, at least from a purely content point of view, not different from swapping anti-government ideas in China: Both is illegal, and both requires additional security to be done without prosecution. The question is now whether we're willing to accept the existance of the former to enable the latter. You will only get them together. Is the freedom of the Chinese people (and, given the recent development in the west, probably ours soon, too) worth it, knowing that this will also allow communication of pedophiles, terrorists, spies and maybe even worse? Or should we toss both? That's basically the options we have.
And before someone replies with "but tor doesn't allow chinese to discuss freely, isn't secure, etc": This isn't just about tor. That question affects all tools that allow free speech. The question is, is free speech worth dealing with the effects of free speech that you do not want to exist?
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Emotions are rarely a good adviser when trying to find a sensible solution. Thus, yes, coldly analyzing even horrible ideas is basically the correct way to come to a conclusion that will in the long run result in the least troubles.
For reference, see the current headless chicken approach to terrorism.
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
The content of secret dropboxes reflect the legality of content in the community. Since it is a bit of a hurdle to access those items, and the download speed is fairly slow, people will not host legal content this way, simply for convenience and availability reasons.
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
Technically, it can't be. But since most of the exit points are pretty well known, it's not all that hard.
There is a list of TOR exit points in case you want to black- or white-list them.
If more people made themselves exit points, rather than just taking advantage of the network, that problem would go away.
Last time I looked at it, I concluded that most of the traffic on TOR was child pornography and shared music/films. I didn't want to risk the police thinking I was responsible.
(But, I only have ADSL so it's not much of a loss.)
In other words, "Tor movement" is a phrase you made up for members of the Tor community that you don't personally like. And yet you're being expected not to be modded down for making wide, sweeping remarks about the very same people.
You're pretty fucking stupid for MIT, I hope no one knows you're posting here. That would be embarrassing.
I concluded that most of the traffic on TOR was child pornography and shared music/films.
Please explain how you arrived at this conclusion. Did you actually survey TOR traffic to see what it contained, or are you simply assuming that the only reason most people want anonymity is CP & file sharing? I was under the the impression that TOR encrypted its traffic, except for what entered/exited at the exit nodes.
I prefer rogues to imbeciles because they sometimes take a rest.
You won't have to wait long. We're getting there.
I prefer rogues to imbeciles because they sometimes take a rest.
And in many states you can actually have sex with them, you just cant take pictures.
This is my sig. There are many like it but this one is mine.
You know, however much my jobs have sucked at various times, I think that the parent's job would suck worse. Dealing with images of abused kids as a regular job = really not fun. Tracking down and actually catching some of the offenders would likely be lightening, but I over time could see it easily working towards a storm-trooper attitude of bowling over (human) obstacles to get at the real bad guys if you had to see the evil things they do all the time...
If the exit node is compromised it can see the destination IP, and clear text message
A lot of people put to much faith in TOR anonymizing capabilities, and forget this one little detail: If you are using an insecure transport method to begin with (ie: FTP, POP3, SMTP) you are still vulnerable to an attack from someone running a compromised exit node. Sure, it won't be direct, but it wouldn't be to hard to run a node and gather user names and passwords, and that can easily lead to figuring out who you are.
In other words: TOR is NOT A SECURE COMMUNICATIONS CHANNEL!!! It doesn't have any magical properties to keep plain text communications away from a random attacker. If you want to be secure, you must use a secure protocol!
Fighting oppression has always gotten people killed. If Tor allows people to speak out with less risk, it's done it's job.
Give me Classic Slashdot or give me death!
FTA: "A friendly anonymous sponsor has provided a pile of new servers ..."
Hairs standing on the back of my neck.
Last time I looked at it, I concluded that most of the traffic on TOR was child pornography and shared music/films.
Unless you were able to sniff all the traffic going through TOR, I fail to see how you reached this conclusion.
.
Trolling is a art,
That's not exactly a "list", but it does make a good way to test if an IP is an exit point.
I don't know about your assertion on child porn and piracy. There was a story not too long ago about how particular agencies were using TOR, and their mail passwords were compromised because they were sent plaintext, and exit nodes got them by sniffing the traffic.
Serious? Seriousness is well above my pay grade.
DURR WUT IS FIREFOX I GO ON THE INTERNET WITH (INTERNET EXPLORER / SAFARI)??? I DONT SEE A TOR BUTTON THIS IZ HARD!!!
Until off-the-shelf computers come with Tor or something similar ready to go right out of the box, of course it's only going to be the enthusiasts and scumbag fringes that'll put the time into researching and securing their privacy online.
"When information is power, privacy is freedom" - Jah-Wren Ryel
Unfortunately freedom has it's costs.
Yes, it's a buck 'o five.
Run an exit node. If the original communication wasn't encrypted (ie: http instead of https), then you'll see everything that they originator gets.
Good point. Bang on.
Now as we move to encrypted fragmented cloud storage and computing, that assumption will presumeably have to change, as it will become routine to encrypt both your stored content and its transmission. And I can see anonymization being offered as part of cloud services of the future, to prevent corporate espionage (shady forms of "business intelligence") etc.
When encryption and anonymization of net communications becomes the norm, then who do you watch, and how?
Where are we going and why are we in a handbasket?
Though the looking glass, Alice wrote:
Dear Trusting Fools,
I invited the jabberwocky and his friends into the white rabbit's house where I'm staying and he slipped something into the sauce. It's for your own good, you know.
Love,
Alice
++
The note is slipped through the looking glass and on the other side it reads:
Dear Friends,
Goodness! I've had some troubled times here in Wonderland, but everything is resolved and it has nothing to do with the sauce, everything is fine!
Love,
Alice
PS. I have a whole new batch of sauce you really should try! We're switching to the new batch now, we urge you to switch, too, for the sake of your health! We've added new vitamins!
You're right. We had better just give up.
Actually, they are most commonly anonymous *web* servers, as in HTTP.
But you could run practically any kind of server.