Mozilla Dusts Off Old Servers, Lights Up Tor Relays

TechCurmudgeon writes According to The Register, "Mozilla has given the Tor network a capacity kick with the launch of 14 relays that will help distribute user traffic. Engineers working under the Foundation's Polaris Project inked in November pulled Mozilla's spare and decommissioned hardware out of the cupboard for dedicated use in the Tor network. It included a pair of Juniper EX4200 switches and three HP SL170zG6 (48GB ram, 2*Xeon L5640, 2*1Gbps NIC) servers, along with a dedicated existing IP transit provider (2 X 10Gbps). French Mozilla engineer Arzhel Younsi (@xionoxfr) said its network was designed to fall no lower than half of its network capacity in the event of maintenance or failure. The Polaris initiative was a effort of Mozilla, the Tor Project and the Centre for Democracy and Technology to help build more privacy controls into technology."

LOL ... what?

[gstoddart]

three HP SL170zG6 (48GB ram, 2*Xeon L5640, 2*1Gbps NIC) servers

LOL ... geez, I wish I had something like that just laying around in a cupboard.

Sheeee-it.

Re:LOL ... what?

three HP SL170zG6 (48GB ram, 2*Xeon L5640, 2*1Gbps NIC) servers

LOL ... geez, I wish I had something like that just laying around in a cupboard.

Ah, but it comes with a catch. These are Mozilla servers.The AX (Administrator Experience) team has made regular improvements to them every month. As of this writing, the case has been modified so that it has no front-panel status display (not even a status bar of LEDs to show temperature and system load), and the case has been modified so that the power button is operated by a foot pedal, and next week the fiber/ethernet ports will be covered over with a 2-inch thick layer of beautifully minimalistic white epoxy laboriously hand-polished to a glossy sheen.

Re:LOL ... what?

[gstoddart]

Ah, but it comes with a catch. These are Mozilla servers.The AX (Administrator Experience) team has made regular improvements to them every month. As of this writing, the case has been modified so that it has no front-panel status display (not even a status bar of LEDs to show temperature and system load), and the case has been modified so that the power button is operated by a foot pedal, and next week the fiber/ethernet ports will be covered over with a 2-inch thick layer of beautifully minimalistic white epoxy laboriously hand-polished to a glossy sheen.

*bites lip* Oh, keep talking nerdy to me.

Re:LOL ... what?

[NotBornYesterday]

It's older gear that is not that expensive. Not bad, but not exactly bleeding edge.

I'm not criticizing; this is more than I've donated to the cause.

Payed by who?

"Whom surely", sorry couldn't resist.

But seriously, did they do this out of the goodness in their hearts, or did someone pay for it? Yahoo payed them enough to switch the default search engine, what three letter agency would pay for them to do this and get free monitoring, of a huge tor network chunk?

Re:Why make enemies of goverments?

[clonehappy]

Mozilla has just given the world governments very own honeypot a great boost in capacity. Why would that make them an enemy?

Re:Why make enemies of goverments?

Why make enemies of governments?

Short answer: Because they're there.

Long answer: What you don't seem to understand is that none of us owe any of the world's governments a goddamn thing. They govern with our sufferance. Their continued existence depends entirely on our reluctance to face the consequences of overthrowing them. They need us more than we need them. Therefore, the world's governments should remember their place while they still have one.

Re:48GB of ram?

[rxtc]

well, if you use Chrome and have more than 5 tabs open, I will believe you

Relays, not exit nodes

[Solozerk]

It should be noted that those are relays, which transit data inside the tor network, not exit nodes (which provide exit points to the general network and can be a large risk for their operator should any illegal content be accessed). Relays still help with the general obfuscation of the network as well as for hidden services, though.
Apparently, Mozilla is considering eventually deploying exit nodes as well though.

Finally, for those that will scream "child porn", it should be noted that a very, very small minority of tor traffic is actually linked to that type of content, despite what the DoJ says; the best estimates from the tor project is around 1.5%. This move by Mozilla is a good thing - amongst other things helping countless defenders of freedom in oppressed regimes speak up in safety.

Re: Relays, not exit nodes

[Solozerk]

how does the DoJ know what percentage of ANYTHING is going through it

That's an easy one: they make that number up, to spread FUD about it. And read the article I linked, BTW (and the source it links): the number in question has been easily disproved, with a relatively simple analysis of hidden services' hostnames resolution. Tor is not the USA's tool - it is an open source, publicly available software that was originally financed by part of the US government, period.

I realize all the Snowden revelations have made lots of people a bit paranoid (which is a good thing, mostly); but the fact is, it is extremely unlikely that tor is compromised in any serious way. Barring human error, tor works, mostly - there are some attacks possible, and there are demonstrated attempts by the NSA and others to compromise it (with some extremely limited results, both in their scope and in their duration); however, I have not seen any shred of evidence suggesting that it has been compromised in any serious way. This growing meme that "tor is broken for good", and the larger one that "if it's connected to a network, it's accessible by the NSA" is simply bullshit.

The thing is, in all likelihood, tor works. GPG works. If you encrypt something with GPG and the key is not available to them, even the most powerful security agency on the planet will not be able to read it. The advances both in basic mathematics and/or computing required to break those are so extreme that it would be very, very hard to hide it. And nothing in the Snowden leaks has suggested that those have been broken - quite the contrary, in fact, since several of the revealed documents suggest that tor and the growing encryption usage are a serious problem to those agencies.

That doesn't mean that it'll stay that way, mind; personally, I think that some sort of quantum computing might be in reach of those same agencies in a few years (and they are dumping and storing all the encrypted, non-breakable traffic they can in the meantime, I imagine waiting for this day) - and even that personal opinion will seem paranoid and far fetched to most experts in the field. But in the meantime, the most likely hypothesis is simply that those encryption algorithms and protocols are still secure. If you have any shred of evidence that is not the case, please link those - I'd genuinely appreciate it.

And finally, about Ulbricht and the other dark net markets taken down more recently: all of those have been clearly linked to human error, from corroborating testimonies from several parties. So sure, you can believe that this is entirely parallel construction, and you can also believe that Obama and most of the five eyes countries are bitching about encryption more and more to present a plausible deniability front while decrypting everything in the background; but right now, once again, there's nothing public even hinting at that.

Re:Why make enemies of goverments?

[TheCarp]

Because when the state makes its enemies based on whether or not their legitimate use of technology annoys them, then the state deserves enemies.

You are evaluating the situation in a vacuume. If everyone took that approach then the government just gets whatever it wants out of fear. Giving in to that and making decisions based on it, encourages such rule by fear attitudes.

Can we please get the fuck off TOR

[nimbius]

TOR has never been more than an interesting proof of concept. it took a little while for the spooks to catch on, but these days theyre so good at poisoning exit nodes and injecting malicious content that TOR is less of an anonymous network and more of a cautionary tale.

You should be using I2P https://en.wikipedia.org/wiki/...
and while we're on the subject, Mozilla has gotten too chummy with advertisers for me to be comfortable with anymore. They started out on a mission to protect the internet, and now they have video chat, targeted advertising tabs, and a fat paycheck from google every month. Firefox is fast turning into the realplayer of the 21st century. What we should be doing instead of looking for corporations to help us is working to Opt out of global data surveillance programs like PRISM, XKeyscore and Tempora.

Re:Can we please get the fuck off TOR

[StikyPad]

I2P is (or seems) good for anonymously accessing eePsites, but it's not particularly useful for general browsing. And as of now there only seems to be one outproxy, which makes it even worse.

Re:Can we please get the fuck off TOR

[rahvin112]

There is nothing wrong with TOR other than not enough people are providing capacity. The biggest reason the government can attack TOR is that the number of relays and nodes is so pathetically small as to make it trivial to attack it for a large well funded organization. And your suggestion is to reduce the effectiveness of TOR even more AND put your trust in a system in which the developers themselves can't guarantee it's secure because it's never been audited, unlike TOR, and operates on the exact same principles and methods.

You sir are a fool.

Of I2P, freenet, Tor and all the others TOR is the only one with good financial backing and an audited codebase that more than 3 people have looked at. I2P on the other hand is built on Java with literally one developer and is even smaller of a network, and likely suffers the exact same weaknesses as TOR, the most important of which is that the smaller the number of machines connected the easier it is to crack and track the network encryption and routing.

Re:Can we please get the fuck off TOR

[ThatsMyNick]

I2P cant be used to access google and the general internet. Tor can be. So you should be using Tor, just keep in mind that anything unencrypted can and will usually contain malicious content. Even if not by the spooks, people change stuff for lolz, and monitor stuff for research and lolz. It doesnt mean tor is not good. It is just something you have deal with.

Re:Why make enemies of goverments?

[Flavianoep]

[satire]Hooray! Now "someone" can access childporn faster![/satire]
It's not that only criminals use Tor, it is more like criminals use only Tor.

Re:Why make enemies of goverments?

[dcollins117]

So what? Tor is perfectly legal. The use of Tor doesn't say anything about you other than you are using Tor. Anyone who thinks it implies something nefarious or criminal is going on is fucked in the head.