Slashdot Mirror

← Back to Stories (view on slashdot.org)

Wikileaks Was Launched With Intercepts From Tor

Posted by kdawson on from the secrets-have-to-exit-somewhere dept.

The New Yorker is featuring a long and detailed profile of Julian Assange, founder of Wikileaks. From this Wired's Threat Level pulls out one salient detail: that Wikileaks' initial scoop came from documents intercepted from Tor exit routers. The eavesdropping was pulled off by a Wikileaks activist — neither the New Yorker nor Wired knows who or even in what country he or she resides. "The siphoned documents, supposedly stolen by Chinese hackers or spies who were using the Tor network to transmit the data, were the basis for Wikileaks founder Julian Assange's assertion in 2006 that his organization had already 'received over one million documents from 13 countries' before his site was launched ..." Update: 06/02 06:31 GMT by T : In reaction to the Wired story, and the New Yorker story on which it drew, Andrew Lewman of the Tor Project points to this explanation / reminder of what Tor's software actually does and does not do. Relevant to the claims reported above, it reads in part "We hear from the Wikileaks folks that the premise behind these news articles is actually false -- they didn't bootstrap Wikileaks by monitoring the Tor network. But that's not the point. The point is that users who want to be safe need to be encrypting their traffic, whether they're using Tor or not." This flat denial of the assertion that Wikileaks was bootstrapped with documents sniffed from the Tor network is repeated unambiguously in correspondence from Wikileaks volunteers.

2 of 157 comments (clear)

  1. Re:Old News Is Old by DarkKnightRadick · · Score: 0, Redundant

    You should try going elsewhere for you news aside from /. :p The first referenced article is the one I read.

    --
    "There is a way that seems right to a man, but its end is the way of death." Proverbs 16:25 (NKJV)
  2. Fundamental Flaw? by IonOtter · · Score: 1, Redundant

    Would this be a fundamental flaw of the TOR network? If you don't know who's controlling the exit nodes, then you will never know if the information you send is truly secure.

    One of the things we were trained for in the Navy-and something in which I got an abject lesson-is "Trust but verify". I "trusted" my senior petty officer when he told me that he'd secured the transmitters when we went to go raise the antennas. When I got back to radio to restore the "secured" transmitters, I found them happily pouring out 1000 watts of power with each ping, which were coming 2-3 per second.

    My "Link-11 Sunburn" taught me that very important lesson: Trust but verify.

    If you can't verify the network yourself, then don't trust it. Make sure the information you send over it can't be traced back to you in any way. Good luck with that, but do your best anyway.

    --
    [End Of Line]