[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Sonic Firewall, Iran related?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] Sonic Firewall, Iran related?
From: Andrew Lewman <andrew@xxxxxxxxxxxxxx>
Date: Mon, 13 Feb 2012 13:53:12 -0500
Authentication-results: lewman.is;
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 13 Feb 2012 13:53:30 -0500
In-reply-to: <4F395720.8010205@xxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Organization: The Tor Project, Inc.
References: <4F395720.8010205@xxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

On Mon, 13 Feb 2012 13:32:00 -0500
Nathan Freitas <nathan@xxxxxxxxxxx> wrote:
> He wrote me today saying this:
> "Today I had a talk with the head of computer department, he said that
> the sonic wall blocking policies are automatically updated and they
> can't do anything with that."
> 
> While I do not know who "automatically updated" their firewall rules,
> it is interesting that this wasn't a targeted Tor thing by the local
> admin, but some wider deployment, perhaps directly from Sonic
> corporate themselves.

what a coincidence, I talked to a user last week with the same
problem, same sonic firewall. It turns out that his university was
breaking all SSL by trying to proxy the connection. It seemed it was
purposely breaking the ssl, probably for logging/policy reasons. The CA
was installed by the university on their mandated laptops, so students
would never know they were mitm'd the entire time. Sounds like
something Burma did a year or so ago too.

-- 
Andrew
http://tpo.is/contact
pgp 0x74ED336B
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Sonic Firewall, Iran related?
  - From: Nathan Freitas

References:
- [tor-talk] Sonic Firewall, Iran related?
  - From: Nathan Freitas

Prev by Author: Re: [tor-talk] Adblock Plus and Ghostery should be included in Tor bundle
Next by Author: Re: [tor-talk] Tor bridge delivery method
Previous by thread: [tor-talk] Sonic Firewall, Iran related?
Next by thread: Re: [tor-talk] Sonic Firewall, Iran related?
Index(es):
- Author
- Thread