[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Security issue. Firefox in Tor Browser Bundle allows access to LAN resources. To fix: ABE of NoScript must be turn on by default



> don't exclude it at all. For example it can be a very hidden malware
> that not detected by antivirus and it will be enable to invisibly
> communicate with it's "second part" when you visit some web-sites
> because it doesn't need in allowing rules in system firewall.

Yes, but see what the design specification says regarding the attacker
capabilities:

https://www.torproject.org/projects/torbrowser/design/#attacks
(especially section 4).

Thus, I doubt that the TorBrowser is the proper platform to defend
against an attacker you have in mind.

Attachment: signature.asc
Description: OpenPGP digital signature

-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk