[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-talk] Risk of selectively enabling JavaScript
- To: tor-talk@xxxxxxxxxxxxxxxxxxxx
- Subject: Re: [tor-talk] Risk of selectively enabling JavaScript
- From: Michael Wolf <mikewolf53@xxxxxxxxx>
- Date: Tue, 07 Jan 2014 11:46:31 -0500
- Delivered-to: archiver@xxxxxxxx
- Delivery-date: Tue, 07 Jan 2014 11:56:34 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:openpgp:content-type:content-transfer-encoding; bh=lLC/tHvxRWFEcdEHdwMxwUYDMyuzYyoZ8j32RTLN+Ys=; b=VJ2JGYGwygI5c+u3HW1oAoXiqx2m1J/UlC1lXIDbDh8PkMbFqTctgBOh6rsyEVTfIV j1l/yasyrQ+n07PGXlQPvFFQpLp5ypqvKNIRfwZUvMQBpltpM2Lq7QFFSoX9TY8YBZmS HtdC0GLpDIKFb7aNNIJZpCGwT1qWgPHxV1nk2Z5PYiMCcPJuFdc9w7SZFHTJ1tjNlzG+ svB7Tl34kRGmpDRGOkNaDtgLf6Ms1E8eDIGzsulRpV0ZZBCSwfxCXD6ZhaHWdWR41B4a 4ISOhFnjtmtXPgByaXgoBuWjVJhoA8ZLVpQvHv58Dvlc+7B2FSLni7ZKuYYB5A7fUqQG 8uwA==
- In-reply-to: <DUB121-W20EBFFA8D3A7CE07AAB9BCC8B60@xxxxxxx>
- List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
- List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
- List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
- List-post: <mailto:tor-talk@lists.torproject.org>
- List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
- List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
- Openpgp: id=EC564FE1
- References: <52CBD253.5050906@xxxxxxxxx>, , <DUB121-W2F643DA32A62999F09B41C8B60@xxxxxxx>, , <20140107140041.GG7102@xxxxxxxxxxxxxx>, <DUB121-W5A8130FA697FC93915200C8B60@xxxxxxx>, <52CC15A9.1030107@xxxxxxxxxxx> <DUB121-W20EBFFA8D3A7CE07AAB9BCC8B60@xxxxxxx>
- Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
- Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>
- User-agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.2.0
On 1/7/2014 11:09 AM, Mark McCarron wrote:
> We're not discussing censorship, but the removal of potential exploitable data. Its not a keyword system, it removes cookies, web bugs, adds jitter to timings, etc. It can be disabled with a click.
>
> Regards,
>
> Mark McCarron
>
Tor exit nodes have to be completely blind for legal reasons. The
moment they start inspecting or filtering out *any* type of content,
some government can pressure the Tor Project to filter out other
content. I don't remember the specific legal terms, but inspecting or
filtering the data changes your status from being a simple network relay
to being a sort of content provider, and you can be held legally
responsible for any content that flows through your node at that point.
Jitter/timing could be done, since that would not require any inspection
or filtering. However, IIRC, the amount of additional latency required
to make timing attacks non-trivial is far more than would be acceptable
to the typical user. Someone who has studied this could give more insight.
--
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk