[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18361 [Tor Browser]: Issues with corporate censorship and mass surveillance



#18361: Issues with corporate censorship and mass surveillance
------------------------------------------+--------------------------
 Reporter:  ioerror                       |          Owner:  tbb-team
     Type:  enhancement                   |         Status:  new
 Priority:  High                          |      Milestone:
Component:  Tor Browser                   |        Version:
 Severity:  Critical                      |     Resolution:
 Keywords:  security, privacy, anonymity  |  Actual Points:
Parent ID:                                |         Points:
  Sponsor:                                |
------------------------------------------+--------------------------

Comment (by cypherpunks):

 Is CloudFlare trying to protect against anything besides these 4
 categories of unwanted traffic?

 1. Comment Spam
 2. DDOS
 3. Vulnerability scanning
 4. Crawling

 Of course different customers probably have different priorities, but it
 seems to me like captchas on GET requests are mostly useful for stopping
 crawling. (Comment spam is POST, DDOS over Tor would be stupid as botnets
 are cheap and more effective, and for vuln scanning it should be pretty
 easy to have high confidence that typical requests are legit using simple
 heuristics.)

 So whats up?

 Can any CloudFlare person explain if there are more than these 4
 categories of unwanted traffic?

 And what portion of CloudFlare customers are anti-web-crawling?

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18361#comment:148>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs