[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] TOR issues

To: Aeris <aeris@xxxxxxxxxx>
Subject: Re: [tor-talk] TOR issues
From: Hollow Quincy <hollow.quincy@xxxxxxxxx>
Date: Tue, 6 Jan 2015 12:05:23 +0100
Cc: tor-talk@xxxxxxxxxxxxxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 06 Jan 2015 06:05:34 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=RZaLJUMtrWUsedOZuk0cLVlPoEKXCUwRLuW51hBYLEc=; b=zTSaNPLFuic3DTRMkkaHGWxKKO9h+vCk/NuViFl/RkTNoFEiTa0C5Vd0dPFIEQXFBy icDco2yfcuWNju5k/B+eIYcvLC8tSXVcTIxfTDgdzAIDx2DO7HutdgT0E0/b/up8i/rc w+/rzafk9wttAscNMqCf5x5psofZUSMXMPv01xHEtfpZXxzni1x2SypXuVfxHDn6hiIB KuqICBnVs94EcvU4yUPuo1empPyloOXAy+778m3r2hGGQkrYnAEhZ9OcJxpolVMGOLcz +yHUt4iNbDBeryBNoQQkv+JWyaU4LUyNIo72/a5pokqFGMnGqWqfPFOeOB/nIA93YdK+ i/lQ==
In-reply-to: <1994687.4rjsg2mUS4@pc353>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAB=COR7iiKtvJhkBhar=hch287R0yDsDyW=vapBZJOZ+NqnfWg@xxxxxxxxxxxxxx> <1994687.4rjsg2mUS4@pc353>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

[...]
>> 3) How the communication is encrypted between nodes ?
>> RSA encryption is not resistant for Man In The Middle attack. (that's
>> why when I connect to new SSH server I need to add public key of the
>> server to trusted list).
>> When I use TOR my request goes to Node1 and than to Node2. How can I
>> establish save connection with Node2, when Node1 is between us ?
>
> RSA (assymetric encryption) is only use to exchange private data to do AES
> (symmetric encryption) after that.
> And RSA *is* resistant to man-in-the-middle attack, AES is not.
> With RSA, you can identify strongly your mate.

I called it wrong. I agree that RSA *is* resistant to
man-in-the-middle attack, but I was thinking about exchanging public
keys.
Here: https://www.torproject.org/docs/hidden-services.html.en
I see "DB" in the picture, that contains all hidden services public
keys (so this is trusted place with public keys).

Do you know how to get this list "manually" ? Is it exposed somewhere
publicly ? Can I download it as file ?

>> 4) Is there a single point of failure ?
> Not really.
>> There need to be one central place where all IPs of TOR nodes are
>> stored, so when I run my TOR bundle I go to this place and read node
>> list and send requests using it. So if this place is down (for example
>> because DDOS attract) new users will not be able to use TOR network.
>> They will not find any TOR node.
> There are Directory Authorities (10 actually) to store Tor node IP and public
> key, and to calculate consensus for exit/guard probabilities.
> Those servers are managed by differents people or organisations and it wonât be
> so easy to take them down all in the same time.
> Adding new directories is not difficult, but require Tor upgrade (currently
> hardcoded IP).

This 10 places are "DBs" from this pictures ?
https://www.torproject.org/docs/hidden-services.html.en

And here I found part of this hardcoded addresses
http://security.stackexchange.com/questions/24971/how-does-tor-protect-against-fake-entry-nodes-total-redirection

Thank you for help
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] TOR issues
  - From: Hollow Quincy

Prev by Author: [tor-talk] TOR issues
Next by Author: Re: [tor-talk] TOR issues
Previous by thread: Re: [tor-talk] TOR issues
Next by thread: [tor-talk] Promote Tor and Hidden Services as an anti-corruption tool for law enforcement agencies and others
Index(es):
- Author
- Thread