[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] MyFamily requires a mutual agreement

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] MyFamily requires a mutual agreement
From: nusenu <nusenu@xxxxxxxxxxxxxxx>
Date: Sun, 26 Apr 2015 15:57:53 +0000
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sun, 26 Apr 2015 11:58:26 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=openmailbox.org; h=content-transfer-encoding:content-type:content-type :in-reply-to:references:subject:subject:mime-version:from:from :date:date:message-id:received; s=openmailbox; t=1430063887; bh= 9nO1jMoei4/JYihBJDmpdcA9nCE9mQurpcxEi6xJmpI=; b=iocU3sT03HHU/+Z5 +g5LWbMAjKaxEs6wUeDMDSnft4ffuYww6gBIx3T3Y2/QlEi9vvFoL29JuS5UKjd+ mV+tP/1aaTRx/WlaSmv1WJp0/xgS8Z6Ia6D5oV6OQZiwrKtN8+XUn0J1atsXtgnq p4Gm1ovt/hVoyanqcGa2Kqmsmp8=
In-reply-to: <20150426123406.CC579AE418@xxxxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <223eaa337204f5f94241636062f9a9e4.webmail@localhost> <20150423040805.GA7800@xxxxxxxxxxxxxx> <20150423043420.GA15244@xxxxxxxxx> <55394871.4010205@xxxxxxxxxxxxxxx> <20150424024723.GC6723@xxxxxxxxx> <20150426111941.9DF6DAE417@xxxxxxxxxxxxxxxx> <20150426123406.CC579AE418@xxxxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

> This makes for an interesting counter-example: if the MyFamily 
> declaration was used as reason for setting BadExit on related
> exits, a malicious adversary could set their MyFamily to the same
> as a good exit cluster, and then intentionally behave badly, in
> order to get the good cluster flagged as BadExit.
> 
> My point is, the MyFamily declaration is completely
> unauthenticated, and cannot be relied upon for anything more than
> providing contact information. There is a newer iteration being
> discussed that would prevent relays from joining families without
> permission, but then a malicious exit provider would have even less
> motivation to set it up.

Since MyFamily declarations have to be mutual to actually build a Family
group, your described attack scenario does not work.

-----BEGIN PGP SIGNATURE-----
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=rJDh
-----END PGP SIGNATURE-----
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: support
- Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: Roger Dingledine
- Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: Philipp Winter
- Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: nusenu
- Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: Philipp Winter
- Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
  - From: str4d

Prev by Author: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
Next by Author: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
Previous by thread: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
Next by thread: Re: [tor-talk] SIGAINT email service targeted by 70 bad exit nodes
Index(es):
- Author
- Thread