[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: seven bloxortsipt* relays ought not to be Valid

To: or-talk@xxxxxxxxxxxxx
Subject: Re: seven bloxortsipt* relays ought *not* to be Valid
From: Jim McClanahan <jimmymac@xxxxxxxxxx>
Date: Thu, 30 Jul 2009 01:20:11 -0600
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Thu, 30 Jul 2009 03:20:35 -0400
References: <200907300601.n6U61l5J020368@xxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Scott Bennett wrote:
>         a) are running an obsolete version of tor (0.1.2.19) under LINUX,
>            which is far enough back to be a security problem due to the SSL
>            key generation bug in LINUX,

If the key generation problem refers to what I think, and just for the
record, that was only a problem for Debian and Debian derived
distributions of Linux.

<snipped other reasons>

> That much, IMO, ought to justify removal of their Valid flags by the
> authorities.  In the meantime, I have them all in my ExcludeNodes list, and
> I recommend that all relay operators concerned about security in tor do
> likewise.

My comment above should *not* be construed to mean I disagree with this
conclusion.

References:
- seven bloxortsipt* relays ought *not* to be Valid
  - From: Scott Bennett

Prev by Author: Re: Best practice for DNS through tor
Next by Author: Re: Thanks for the inclusion...
Previous by thread: (FWD) Re: seven bloxortsipt* relays ought *not* to be Valid
Next by thread: Re: seven bloxortsipt* relays ought *not* to be Valid
Index(es):
- Author
- Thread

Re: seven bloxortsipt* relays ought *not* to be Valid

Re: seven bloxortsipt* relays ought not to be Valid