[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Tor uses swap?

To: or-talk@xxxxxxxxxxxxx
Subject: Re: Tor uses swap?
From: Gregory Maxwell <gmaxwell@xxxxxxxxx>
Date: Tue, 4 Jan 2011 12:29:57 -0500
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 04 Jan 2011 12:30:02 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type :content-transfer-encoding; bh=aTNeL7oE1CQ6WahaHQomxi1uI5EOuN6apGP5sH/bDHg=; b=rhFXuSW6KRkzKeelMoigtRcRolxJef0a//JzREvb+m8zEwmCffi/h0mfFOGK1ZrIw3 ScGtfGeh42kqYRuj1oewubnP9gg30Tz+zWSrJi/02526aR5iYkIwkfR2jGE7+rf6GFrg 0pA0G7Wn+HCsgUneXSPEdRdTkB8qxRFeZemDA=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type:content-transfer-encoding; b=mTKsC1TYNLc5NxLC+hcwppYJiLPVu/0UEpEOeMr/h8nJdAGCH+3GoDvLHBVNrN5atC eLSQkx1STFse5Ai/+ZCt2caS2KE6Zf+GCS8ruVMbRKXVdG6gWwUOP1hUXfbj5l34v0dv 9eyaXXTR8Vi9mUxZIfEl/ODhAKuaL3+VWM8Ek=
In-reply-to: <20110104171111.GA4117@xxxxxxxxxx>
References: <1294146849.6784.1413407807@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <20110104131638.GC3242@xxxxxxxxxxxxxx> <1294147518.16559.1413408865@xxxxxxxxxxxxxxxxxxxxxxxxxxx> <AANLkTin-NdBTybP013tR7JhZbBPf1VHojQRKh2oKCLku@xxxxxxxxxxxxxx> <20110104171111.GA4117@xxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

On Tue, Jan 4, 2011 at 12:11 PM, Steve Crook <steve@xxxxxxxxxx> wrote:
> On Tue, Jan 04, 2011 at 10:13:00AM -0500, Gregory Maxwell wrote:
>
>> swap /dev/sda9 /dev/urandom swap,cipher=aes-lrw-plain,size=256
>
> Same solution as I use but with slightly different options. ÂMine are:
> cipher=aes-cbc-essiv:sha256,size=256,hash=sha256,swap
>
> The example on
> https://trac.torproject.org/projects/tor/wiki/TheOnionRouter/OperationalSecurity
> suggests no options other than 'swap'.

Our commands differ in the chaining and IV selection mode.  Mine
should be a fair bit faster. Both should provide adequate security.
The LRW mode I'm suggesting wasn't added to the kernel until a few
years after essiv support, which explains the prevalence of essiv in
recommendations.

I'm not sure what the defaults are if no parameters are specified. I'd
be concerned that it may use plain CBC, which is vulnerable to
watermarking attacks[1].

[1] http://www.tcs.hut.fi/~mjos/doc/saarinen_encrypted_watermarks.pdf
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

References:
- Tor uses swap?
  - From: andre76
- Re: Tor uses swap?
  - From: Roger Dingledine
- Re: Tor uses swap?
  - From: andre76
- Re: Tor uses swap?
  - From: Gregory Maxwell
- Re: Tor uses swap?
  - From: Steve Crook

Prev by Author: Re: Tor uses swap?
Next by Author: Re: Is "gatereloaded" a Bad Exit?
Previous by thread: Re: Tor uses swap?
Next by thread: Tor uses swap?
Index(es):
- Author
- Thread